On Wed, May 14, 2008 at 12:03:21PM +0200, Joerg Schilling wrote:
> Joseph Kowalski <jek3 at sun.com> wrote:
>
> > > Boot off the live CD, mount the image, etc.
> > Sounds pretty insecure, but we have this issue already.
> > > I guess we should add something pretty bulletproof to the docs.
> > Agreed. My contact in Ubuntu (who no longer works there) told
> > me that lots of folk we confused by the "no login" root. It wasn't
> > really a problem, but it there was a major "what the ****" response.
> >
> > It will probably be easier for us as others have already been the
> > pioneers.
> >
> > > Perhaps a "fix root access" utility?
>
> A good idea would be to allow /sbin/sulogin to log you in as root if the
> system does not have a "root role" enabled user (would this make sulogin
> huge?).
The suggestion is that a root password wouldn't exist, so that would be
hard to justify anyway.
> The other question would be how to find out "root role" enabled user if you
> don't know him?
Hopefully, such a mechanism wouldn't exist unless you were already
logged in, or it would represent a worrying information leak.
Ceri
--
That must be wonderful! I don't understand it at all.
-- Moliere
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
URL:
<http://mail.opensolaris.org/pipermail/opensolaris-arc/attachments/20080514/bf839a6d/attachment.bin>
