> Dear All,
> I found a little big problem in using LILO as boot-loader.
> When I turn on my pc, if (at LILO prompt) I write
>
> <label> single
>
> (where <label> is one of the labels defined in my lilo.conf) a minimal
> kernel is loaded, the system starts without asking password and I am able
> to change the Root password without insert old one: I am free to enter
> the system with Root privileges without control...
So can anyone who has a bootable Linux floppy or CD (if your system boots
CDs).
So;
Secure your BIOS so you can't boot or change BIOS w/o password (note; this
fails if someone opens the box and removes the batter for a while so as to
reset the BIOS)
Secure LILO with passwords.
Ideally, all the passwords will be different and not written down.
There is little be done to prevent people with physical access from
breaking in if they want to. However, you CAN slow them down (and maybe
use video surveillance to photograph those who do).
--
Cheers
John Summerfield
http://os2.ami.com.au/os2/ for OS/2 support.
Configuration, networking, combined IBM ftpsites index.
--
To unsubscribe:
mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
