Very Computer

Hi,
I wanted to know ' How to disable the boot time option 'linux single'.
As at LILO this posses threat to the system security.
Can any body will help in this regard.

I will be very thankfull for any pointers in this regard.
thanks.
--
\aditya______

Quote:> Hi,
> I wanted to know ' How to disable the boot time option 'linux single'.
> As at LILO this posses threat to the system security.
> Can any body will help in this regard.

--

 .  _\\__[oo       from       | Phones: +44 121 471 3789 (home)

.  l___\\    /~~) /~~[  /   [ | PGP-fp: D7 03 2A 4B D8 3A 05 37...
 # ll  l\\  ~~~~ ~   ~ ~    ~ | http://wcl-l.bham.ac.uk/~bam/

Hi there.

 > I wanted to know ' How to disable the boot time option 'linux
 > single' as at LILO this posses threat to the system security.
 > Can any body will help in this regard.

It can't be disabled as such, but it can be password protected.

First, change the access permissions to /etc/lilo.conf to 600
(readable and writable by owner (root), no access to anybody
else).

Next, edit /etc/lilo.conf and, in the general settings section at
the beginning, add these two lines:

 Q> password=XXXXX
 Q> restricted

Set the password to whatever you wish.

The result of this is actually rather more general than just
protecting "linux single": If the person booting the machine
wishes to supply ANY parameters to the lilo kernel selection
parameter, they have to specify the password contained in the
"password=" line...

Best wishes from Riley.

Check also the linux faqs for the security issues.
There is a problem in allowing untrusted persons console access:
a machine can be boot single user with another rootdisk -- from DOS
mode/
bootable diskette/bootable CDrom/bootable whatever yor machine supports.

As understood, you can change the bootup options in your BIOS (I presume
you're running a usual i...86 PC linux box), and lock the BIOS with a
password
-- yet I myself have an experience of emergency break into such "locked"
systems
(you just open the box, discharge the BIOS battery, and set the BIOS
values of your own).

Quote:> It can't be disabled as such, but it can be password protected.

--
Vassilii Khachaturov
http://www.wisdom.weizmann.ac.il/~vassilii
Skribu al mi per Esperanto!

Firstly MERRY Christmas to all and thank you dearly to all who have
answered my questions in the past.

I've loaded both Redhat and the Caldera versions of linux on my new (P2,
asus 440LX motherboard) computer and both versions give me boot up
warnings of:

"unknown PCI devices(8086:7180)
"unknown PCI devices(8086:7181)
"unknown PCI devices(8086:7110)
"unknown PCI devices(8086:7111)
"unknown PCI devices(8086:7112)
"unknown PCI devices(8086:7113)
"unknown PCI devices(5333:8a01)
"unknown PCI devices(11d1:01f7)

Apparently the architecture is too new.  Would you call these "missing
drivers"?
Funny,  linux in text mode runs fine even with these errors.  But the
Xwindow doesnt start.

Anyone have/had a similar problem that can lend a helping hand?

Santa has obviously been very very  good to me.
Peter Suchsland