Security Basics mailing list archives

Re: security scenario

From: ATD <simon () snosoft com>
Date: 27 Jan 2003 17:03:36 -0500

Well, 
        Firstly if the environment is supposed to be a secure environment use
the systems bios to lock the keyboard, if that is not possible, require
a bios password at boot. You might also want to use lilo.


On Sat, 2003-01-25 at 01:44, camthompson wrote:

consider this (I'm trying to make a network more secure) :
A user enters grub upon bootup and hits "e" to edit the Linux boot 
procedure and then continues to boot into single user mode, and he then 
chagnes the root password to whatever he suits.... the user who did this 
is eventually tracked down and taken care of.

Now, how would I prevent this from happening in future instances?

-- 
ATD <simon () snosoft com>
Secure Network Operations, Inc.

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

Re: security scenario Jonathan Bowman (Jan 27)
- <Possible follow-ups>
- Re: security scenario ATD (Jan 27)
- Re: security scenario Gene Cronk (Jan 28)
- Re: security scenario Richard Arends (Jan 28)
- Re: security scenario Chris Berry (Jan 29)
  - RE: security scenario s7726 (Jan 30)
- RE: security scenario MacFerrin, Ken (Jan 29)
- Re: security scenario Chris Berry (Jan 30)
- RE: security scenario pasi.kivikangas (Jan 30)