It is currently Mon, 25 Sep 2023 09:59:05 GMT

Board index » FreeBSD

All times are UTC




 
Author Message
stompbo
#1 / 4
 freebsd security..
just recently installed BSD4.2 and was just wondering...supposedly Unix
is one of the most secure OS(so i heard), yet a person can gain access
to root by just booting in single user mode using the "boot -s" command
and bypassing the passwd for root to get at any file contained
therein...anyone want to clarify this perception or am i missing
something or not installing the correct security feature? appreciate any
advice...

from
novice



 Sat, 25 Oct 2003 04:03:41 GMT   
Jamie Norwo
#2 / 4
 freebsd security..

If the person trying to get your data has physical access, there is very
little way to stop them from, eventually, getting your data. It is secure
in the sense that short of physical access, there are very few ways to
break in.

Jamie



 Sat, 25 Oct 2003 04:50:17 GMT   
Stephen Montgomery-Smit
#3 / 4
 freebsd security..
You can stop boot -s working if you edit /etc/ttys appropriately.
Look at man boot and man ttys for more details.

--
Stephen Montgomery-Smith
step...@math.missouri.edu
http://www.math.missouri.edu/~stephen



 Sun, 26 Oct 2003 01:28:15 GMT   
Ted Spradle
#4 / 4
 freebsd security..

I believe that if you change /etc/ttys to list "console" as "insecure"
rather than "secure", it will prompt for the root password before
starting the single-user shell.  I've never actually tried it.

Asking for the password in single-user mode won't slow the intruder down
very much.  If they can type "boot -s" they can stick a floppy in the
slot first before they type it.



 Tue, 04 Nov 2003 07:23:18 GMT   
 
   Page 1 of 1
  [ 4 post ] 

Similar Threads

1. Fwd: FreeBSD Security Advisory FreeBSD-SA-01:33.ftpd-glob

2. FreeBSD Security - MAC Mapping

3. FreeBSD security

4. FreeBSD security

5. Linux & FreeBSD - security questions

6. FreeBSD security - chattr equilivent

7. sample freebsd ckermit w/ security makefile

8. Does FreeBSD has better security than Linux?

9. SMTP security server for FreeBSD?

10. freebsd.digital2000.de security check output / motherboardmonitoring

 
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software