Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.mel.connect.com.au!news.syd.connect.com.au!phaedrus.kralizec.net.au!news.mel.aone.net.au!news.mira.net.au!pumpkin.pangea.ca!www.nntp.primenet.com!nntp.primenet.com!ix.netcom.com!news-peer.gsl.net!howland.erols.net!rill.news.pipex.net!pipex!tank.news.pipex.net!pipex!news.utell.co.uk!usenet
From: brian@shift.utell.net (Brian Somers)
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: Password issues
Date: 21 May 1997 10:40:01 GMT
Organization: Awfulhak Ltd.
Lines: 43
Message-ID: <5luje1$39p@ui-gate.utell.co.uk>
References: <337e914c.418331@news.ibm.net.il>
<5lplob$kol@ui-gate.utell.co.uk> <EAHtBs.pK@sphynx.fdn.fr>
Reply-To: brian@awfulhak.org, brian@utell.co.uk
NNTP-Posting-Host: shift.utell.net
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Newsreader: knews 0.9.8
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:41351
In article <EAHtBs.pK@sphynx.fdn.fr>,
causse@sphynx.fdn.fr (Philippe Causse) writes:
> Brian Somers (brian@shift.utell.net) wrote:
>: In article <EAEAsA.1G3@sphynx.fdn.fr>,
>: causse@sphynx.fdn.fr (Philippe Causse) writes:
>: > Enoch Wexler (enoch@wexler.spamthis.co.il) wrote:
>: >: On Sun, 18 May 1997 05:32:31 GMT, Enoch wrote:
>: >
>: >: >I upgraded a 2.1.5 sys to 2.2.2 but forgot to choose a root password.
>: >: >What is the default password of the new 2.2.2 sys?
>: >
>: >: Found the answer to the above shortly after posting. Pressed the ^C
>: >: during bootup. The system entered single user (root) mode. Mounted the
>: >: main disk. Used 'passwd' to set the root's password...
>: >
>: >: So every passerby can do the same...<shiver>
>: >
>: > Except if your console has been flagged as insecure !
>: > See "man 5 ttys" for more information :-)
>
>: In which case they can either boot off a floppy or pick the machine
>: up and walk away with it. Physical access makes you God ! You don't
>: need passwords :)
>
> Most decent PC/AT clones have a BIOS setup which allows you to boot from
> drive "C:" before drive "A:". Furthermore, the setup can be password
> protected (even the boot sequence can be password protected).
> Therefore, and admitting that:
> 1) You boot from C: before A:,
> 2) You changed the boot code disable the fd(0,a) entry,
> 3) FreeBSD is _the_ only O.S. on the system
> 4) Your computer box has been secured (with a locker)
> The system should be reasonably secured :-) Bad times for crackers!
>
> I don't know if Brian will agree but I'll be pretty confident in
> such a system!
I guess. As long as nobody can get inside the actual box.
--
Brian <brian@awfulhak.org> <brian@freebsd.org>
<http://www.awfulhak.org>
Don't _EVER_ lose your sense of humour !