FreeBSD root passwod reset single user mode
If I forget the root password on FreeBSD, I can put in the install CD/USB into the computer and then boot into single user mode, then reset the root password (without having to know the old) by typing `passwd'
This is convenient but isn't it also a massive security hole? If someone has physical access to a computer running FreeBSD does that mean they can just hijack the root account this way Is there a way to disable this? |
If they have physical access, they can do anything to it, including steal all your data. :)
The thing is, how many, of your friends/family/enemies know how to do that. ;) You should be able to disable access to all external media, (check their handbook to see how). |
This is why server rooms have multiple levels of physical security...card swipes to get in, cameras, etc. Any OS has this vulnerability: pull a windows server drive and pop it in a Linux or BSD machine and you can read all the data.Or boot a windows machine with a Linux live thumbdrive and you can read all the data...
|
All times are GMT -5. The time now is 03:02 PM. |