On Friday 04 August 2006 01:56 pm, Garrett D'Amore wrote: > In order to do anything with this knowledge the attacker would probably > need to have root or physical access to the machine. And, for the vast, > vast majority of cases, just running df -k / will also report this > information. (In theory / might be mounted from somewhere other than > the default boot settings for the prom, but I consider that case very > very rare.)
I agree, but that's why I wanted to hear what Casper or Darren thought. They would know best about something like that. In general they can see some things by looking at the system, so maybe that doesn't matter anyway, like a boot device. I didn't know if folks could have a specific device manage boot, but another disk to actually boot the OS (GRUB vs /boot), or if that was even sensitive information. It's a real shame that OBP is not used on PCs...because the BIOS situation on x86 seems to be completely fubar. -- Alan DuBoff - Sun Microsystems Solaris x86 Engineering - IHV/OEM Group _______________________________________________ opensolaris-code mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/opensolaris-code
