On Sat, Oct 8, 2016 at 9:42 AM, Joachim Backes <joachim.backes@xxxxxxxxxxxxxx> wrote:
If you add "init=/bin/bash" to the grub line, there is simply a root shell started (with id=0), so no password is required
This doesn't change what I said about "vanilla system"; it requires the installed system be explicitly modified.
I may try that though. I don't think prompting for the root password at this stage really helps the security much. Anyone who has physical access to the console and who can modify the grub config to boot single user, can also most likely boot from a rescue CD and get full access anyway. Even locked-down BIOS configurations can be bypassed by replacing the BIOS chip or just making off with the hard drive (of course those require a much more determined attacker and the latter is difficult to do undetected).
--Greg
_______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
