Security hole

[Andy Pieters]

On Friday 09 December 2005 13:58, Paul Smith wrote:
> I have noticed that from SLAX liveCD, one has total and free access to
> the home partition of all Linux (Fedora) accounts in the hard-disk of
> the computer. In this way, with a SLAX disk, everyone can spy all
> accounts in the hard-disk. How can this be prevented?
>

Dear Paul

Security is just a theory, it doesn't actually exists.  When you talk about 
security, you are actually talking about a "sense of security".

Each and every single "security" messure can be broken.  The main factor is 
TIME.  By adding more and more challenges to potential hackers, you are 
actually buying time.

In your case, the sensible thing to do would be
1. Setup bios to only boot from hard drive
2. Password protect bios
3. Put a physical lock on the case so they can't open it.

On another note, did you know that you don't even need a live cd?

When you're at the grub screen, press the a key to append 'single' to the 
kernel and you'll be boot into single user mode where you are root without 
having to type a password.  Solution to that: password protect grub. (see man 
grub)

HTH

Andy


-- 
Currently not listening to amaroK
Geek code: www.vlaamse-kern.com/geek
Registered Linux User No 379093
If life was for sale, what would be its price?
www.vlaamse-kern.com/sas/ for free php utilities
--
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20051209/4bb0c814/attachment-0001.sig>