[Linux-Discussion] Re: startup....
- To: linux-discussion@xxxxxxxxxxxxxx
- Date: Tue, 18 Jul 2000 19:55:37 -0500
John Madden wrote:
>
> > > > does anyone know how to bypass the rc.local script at startup? Like
> > > > holding down the shift key or something? I put a program in the rc.local
> > > > but I forgot to put an '&' after it. :)
> > >
> > > Startup in single user mode. :)
>
> > How do you do that?
>
> At the lilo prompt, run 'linux single'
>
> A security note: anything following the boot image at the lilo prompt is
> passed
> as parameters to the kernel. For example, passing 'single' boots the machine
> into single-user mode (harmless on some distributions, but drops you to a
> rootshell without authentication) on Redhat and 'init=/bin/bash' drops you
> right into a root shell when init is called. For production systems (at
> least),
> extra config directives should be used in lilo.conf before lilo is installed.
>
> Here's a run-down:
> Use the 'password' parameter to require a password to boot a particular image.
> If this is specified within an 'image' section, this will force a password
> prompt after image selection. Use of the 'password' parameter in the global
> section with the 'restricted' keyword in the image section specifies that the
> machine can't be booted with parameters unless the specified password is
> provided.
>
> I prefer the second method, in case a system needs to be rebooted remotely,
> and
> no one's there to enter the password. Either way you look at it, this thing
> is
> an often-overlooked security consideration.
>
> John
>
haha Well, that's a nice little hack.
--
James Gosnell
goose@xxxxxxxxxxxx
ICQ#1727569
homepage site: http://sapphire.indstate.edu/~gosnellj
project site: http://premed.dhs.org (currently down)
=============================================================
Avenir Web's Linux Discussion List
List info: http://avenir.dhs.org/linux/discussion.html
To unsubscribe: email linux-discussion-request@xxxxxxxxxxxxxx
with 'unsubscribe' in the Subject line.
Administrative contact: weez@xxxxxxxxxxxxxx
=============================================================
Other related posts:
