[snip]
>> - de ce ca user nu pot da "shutdown -h now" dar pot sa dau "poweroff" (aveam
>> o placa tv si seara eram obisnuit sa dau "shutdown -h 120" cand eram root si
>> ca user trebuie sa dau "sleep 120m && poweroff" ceea ce face aceeasi kestie) ?
>
>din man poweroff:
>
> If you're not the superuser, you will get the message
> `must be superuser'.
>
>din man shutdown:
>
>ACCESS CONTROL
> shutdown can be called from init(8) when the magic keys
> CTRL-ALT-DEL are pressed, by creating an appropriate entry
nu zau... da un pam_console iti zice ceva ?
man 5 console.apps
man 8 pam_console
citat:
The /etc/security/console.apps/ directory should contain
one file per application that wishes to allow access to
console users. The filename should be the same as the
servicename, and the contents are irrelevant; the file may
be a zero-length file. The application that the file is
used by is free to specify the contents in any way that is
useful for it.
# ls /etc/security/console.apps/
halt kappfinder kbdrate poweroff reboot xcdroast xserver
se pare ca ai voie sa dai halt,poweroff, reboot ca user de pe server.
daca vrei sa nu mai aiba access useru sterge ce vrei. Btw vezi ca de vei
sterge xserver nu va mai putea sa intre nimeni in X inafara de rewt :)
>> - care este riscul de a avea un user sau kiar si root fara parola ? (stupid
>> question)
risc. Esti legat la internet cu computeru? sau e just for home use. Daca
indeplineshti conditia 2 atunci riscul e 0. Daca indeplineshti conditia 1
s-ar putea sa o pui de-o mamaliga daca te gaseste unu.
++ ca daca nu ai updates este f posibil ca un script kiddies sa te
gaureasca de la distantza cu asha zisele mass-scanuri.
--
Numai bine,
Ionut.
Murgoci Ionut
Network & System Engineer
RDS Iasi - Network Operations Center
Phone: +40-32-218385 Fax: +40-32-225132 Mobile: +40-094-794620
---
Send e-mail to '[EMAIL PROTECTED]' with 'unsubscribe rlug' to
unsubscribe from this list.
