[Linux-disciples] Re: Bastille
Stephen R Laniel
steve at laniels.org
Wed Apr 20 10:09:58 EDT 2005
On Wed, Apr 20, 2005 at 09:52:30AM -0400, Stephen R Laniel wrote:
> Slashdot has an article up about the Bastille
> security-hardening tool:
> http://it.slashdot.org/article.pl?sid=05/04/19/232230&from=rss
One of the questions Bastille asks is whether we want to
password-protect single-user mode. If someone has physical
access to the machine, he can drop down to single-user mode
and get access without a password; Bastille would configure
it so that you need the root password from single-user mode.
My question is: Ubuntu doesn't have a root account or a root
password. Is there any way to get single-user-mode security
without a root account? It looks like anyone can run
'telinit', so is that what one would harden to make
single-user mode stronger?
--
Stephen R. Laniel
steve at laniels.org
+(617) 308-5571
http://laniels.org/
More information about the Linux-disciples
mailing list