LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices



Poll: Do you set your BIOS password?
Poll Options
Do you set your BIOS password?

You must log in and have one post to vote in this poll. If you don't have an account, you can register here.
Results will be available after the polls close.

The nominees are:

Yes
No
Only on some computers

Reply
 
Search this Thread
Old 07-12-2014, 07:12 PM   #1
maples
Member
 
Registered: Oct 2013
Location: IN, USA
Distribution: Arch, Debian Wheezy
Posts: 431

Rep: Reputation: 110Reputation: 110
Do you set your BIOS password?


Every BIOS that I've seen has the option of setting a password to restrict access to the BIOS setup utility. Do you use it? Only on certain machines? Any stories?
 
Old 07-12-2014, 07:34 PM   #2
frankbell
Guru
 
Registered: Jan 2006
Location: Virginia, USA
Distribution: Slackware, Mageia, Mint
Posts: 8,248

Rep: Reputation: 1558Reputation: 1558Reputation: 1558Reputation: 1558Reputation: 1558Reputation: 1558Reputation: 1558Reputation: 1558Reputation: 1558Reputation: 1558Reputation: 1558
If I have a bad guy in my house accessing my computer BIOS, I have security problems that go beyond passwords.

If I were in the Enterprise, I might have a different take.

Edit: If I were setting up kiosk machines for public use and the public might have access to the power button, I might also have a different take.

Last edited by frankbell; 07-12-2014 at 07:36 PM.
 
1 members found this post helpful.
Old 07-12-2014, 08:06 PM   #3
metaschima
Senior Member
 
Registered: Dec 2013
Distribution: Slackware
Posts: 1,535

Rep: Reputation: Disabled
Not on any of my computers. If they were public use, then you should and more. I would even disable USB for public computers.
 
Old 07-12-2014, 08:40 PM   #4
273
Senior Member
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 3,571

Rep: Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805
Quote:
Originally Posted by frankbell View Post
If I have a bad guy in my house accessing my computer BIOS, I have security problems that go beyond passwords.
Exactly my thoughts.
I do actually encrypt the home partition of my netbook in case it is stolen (I have some personal information on there). However, since it's a personal machine I don't feel there is much risk of a bad guy installing a rootkit on it if I leave it on the table of a restaurant when I go to the lavatory or even if I leave it laying around in a hotel room.
 
Old 07-12-2014, 09:03 PM   #5
${i}
LQ Newbie
 
Registered: Jul 2014
Posts: 22

Rep: Reputation: 9
My vote is no password for BIOS because it's really not a secure thing anyways.

I keep my sensitive data on a external encrypted drive and hope for the best.
However, If the encryption has a security flaw and a knowledgeable person knows how to exploit it then we're screwed.
 
Old 07-12-2014, 09:06 PM   #6
273
Senior Member
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 3,571

Rep: Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805
Quote:
Originally Posted by ${i} View Post
However, If the encryption has a security flaw and a knowledgeable person knows how to exploit it then we're screwed.
I don't worry about this as anyone likely to be able to crack the encryption will either not need to as they have bigger fish to fry, already have the information I've encrypted or both.
 
Old 07-14-2014, 01:48 AM   #7
kooru
Senior Member
 
Registered: Sep 2012
Location: Italy
Distribution: Slackware, NetBSD
Posts: 1,371
Blog Entries: 5

Rep: Reputation: 270Reputation: 270Reputation: 270
Not in my all computers. But just encrypted HDs.
 
Old 07-14-2014, 08:31 AM   #8
Germany_chris
Member
 
Registered: Jun 2011
Location: Stuttgart, Germany
Distribution: Arch
Posts: 645

Rep: Reputation: 246Reputation: 246Reputation: 246
On portables I do
 
Old 07-14-2014, 08:55 AM   #9
rtmistler
Senior Member
 
Registered: Mar 2011
Location: Milford, MA. USA
Distribution: Angstrom, Debian, Ubuntu, MINT
Posts: 1,448
Blog Entries: 8

Rep: Reputation: 537Reputation: 537Reputation: 537Reputation: 537Reputation: 537Reputation: 537
No, never.

Has there ever been an instance of some form of intrusion from a network based entity which has aversely affected someone's BIOS? Or further has there ever been an instance where a program has aversely affected someone's BIOS?

I fully get that you can screw up your BIOS if you enter the BIOS setup; worst case to the extent that you'd force all the settings to maybe cause the system to not boot and then set the password to something difficult.

I think if there were some widespread problems of BIOS intrusion via off system means, then yes maybe people might pay some attention to it.
 
Old 07-14-2014, 09:56 AM   #10
273
Senior Member
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 3,571

Rep: Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805
I think one of the main reasons for setting the BIOS password is to make it more difficult for a bad guy to change the boot order and install a root kit or steal data.
 
Old 07-14-2014, 11:00 AM   #11
rknichols
Senior Member
 
Registered: Aug 2009
Distribution: CentOS
Posts: 1,621

Rep: Reputation: 676Reputation: 676Reputation: 676Reputation: 676Reputation: 676Reputation: 676
My only reason for setting the password is to keep some casual prankster from setting one. I set only the Admininstator password, not the boot password.
 
4 members found this post helpful.
Old 07-14-2014, 12:38 PM   #12
273
Senior Member
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 3,571

Rep: Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805Reputation: 805
Quote:
Originally Posted by rknichols View Post
My only reason for setting the password is to keep some casual prankster from setting one. I set only the Admininstator password, not the boot password.
That's a good point. Might have to ensure I set one in future.
 
Old 07-15-2014, 03:19 PM   #13
spatmur
LQ Newbie
 
Registered: Jul 2014
Location: Meadville, PA, USA
Distribution: Slackware, OpenBSD
Posts: 12

Rep: Reputation: Disabled
Only on my laptop.

But, if my laptop is stolen, the security of the BIOS is probably the least of my worries.
 
Old 08-11-2014, 03:47 AM   #14
JZL240I-U
Senior Member
 
Registered: Apr 2003
Location: Germany
Distribution: openSuSE 13.1 / 12.3_64-KDE, Ubuntu 14.04, Fedora 20, Mint 17, Chakra
Posts: 3,689

Rep: Reputation: Disabled
Quote:
Originally Posted by rknichols View Post
My only reason for setting the password is to keep some casual prankster from setting one. I set only the Admininstator password, not the boot password.
I don't set it -- now I'll have to think about it. Thanks for giving your reason.
 
Old 08-12-2014, 10:39 AM   #15
Nbiser
Member
 
Registered: Oct 2012
Location: Maryland
Distribution: Fedora, Slackware, Debian, Ubuntu, Knoppix, Helix,
Posts: 290
Blog Entries: 7

Rep: Reputation: 43
I generaly set two options on my computers. I not only restrict acess to the BIOS, I also set the password that keeps the computer from booting at all. Better safe than sorry is my mantra!

Nbiser
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How to set login and password and root password in suse 10.2 sirius57 Suse/Novell 8 07-24-2007 10:51 AM
change Root Password even if the password in the grub is also set sheelnidhi Linux - General 6 08-30-2006 08:27 AM
BIOS Password ?? slackb0t Slackware 6 12-01-2005 12:20 PM
bios password vicente General 4 09-25-2001 06:04 PM


All times are GMT -5. The time now is 08:10 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration