On Thu, Sep 28, 2006 at 10:53:34 -0700, Steve G <linux_4ever@xxxxxxxxx> wrote: > > I agree with this and want to see us go one step farther. We also need a boot > option to disallow interactive boot. For servers it can be argued that they have > to be in a protected environment with only admin access provided. But when you > consider desktop installations and security standards like SOX, GLBA, PCI, or > HIPPA, they demand protection of the audit trail, detection of attempts to > subvert it, and identification of users that do stop or start it. Right now its a > matter of typing "I" and saying no to starting the audit daemon. That's too easy. Change the prompt setting in /etc/sysconfig/init to something like the following: # Set to anything other than 'no' to allow hotkey interactive startup... PROMPT=no -- fedora-devel-list mailing list fedora-devel-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-devel-list
