[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Deceptive security?
From: |
Dirk Zöllner |
Subject: |
Deceptive security? |
Date: |
Thu, 28 Nov 2002 08:55:40 +0100 |
User-agent: |
Mozilla/5.0 (Windows; U; Win95; de-DE; rv:1.1) Gecko/20020826 |
Hi.
I wanted to lock some menu entries in the grub menu.
I cite info grub -> Section Security: [...], so only administrators can
start the interactive operations (i.e. editing menu entries and [...]
I entered the grub shell, generated the MD5 password and inserted it in
the file grub.conf. The appropriate menu entry:
title Redhat 8.0
password --md5 something_secret
root (hd0,0)
kernel /boot/...
initrd /boot/...
With this entry I can't start the OS, that's OK. Without using the
password, I can edit this entry via 'e' command, delete via 'd' the
'password --md5 ....' line and press 'b' to boot the OS. :-((
And I tried this:
title Redhat 8.0
lock
root (hd0,0)
kernel /boot/...
initrd /boot/...
with no effect. Is this a misconfiguration or a bug?
My system: Redhat 8.0 with grub 0.92
Kind regards
Dirk Zöllner
- Deceptive security?,
Dirk Zöllner <=