[Linux-disciples] Why no password for the root account?
Dylan Thurston
dpt at lotus.bostoncoop.net
Sat Apr 30 15:26:19 EDT 2005
On Sat, Apr 30, 2005 at 01:34:45PM -0400, Stephen R Laniel wrote:
> I realize it's convenient to be able to drop down to
> single-user mode and get work done without knowing the root
> password, but that is an enormous security hole. I'm
> surprised it was ever allowed into Linux/Unix. Any idea why
> it was set up that way?
In general, it is never possible to secure a computer from an attacker
with physical access. Systems differ a little in how difficult they
make it, but sometimes people feel that it's not worth pretending.
Peace,
Dylan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.bostoncoop.net/pipermail/linux-disciples/attachments/20050430/d431c29b/attachment.pgp
More information about the Linux-disciples
mailing list