[SOLVED] Intruders can log in to my Linux box using run level 1 without using the password ??
Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Any user who has a physical access to your machine should be able to change the kernel parameters. You should keep your machine physically safe. And also keep a password for the Grub. So that anyone who wants to or tries to edit the grub parameters will need to pass the password. And without the password, grub menu will not be accessible for editing.
Look Here for how to protect your grub with password.
You can even add a bios passwd on some systems, but in any case, physical access to a system means all bets are off eg they could remove the hdd & put it in another system; in which case encryption is the only answer.
This is true of any OS, not just Linux.
The newly added line should have that alphanumeric password which you'll find in the bottom of the file (you have redirected the password in this file when creating the password)cut that password and paste it like password --md5 your_password
save and exit.
Last edited by Sayan Acharjee; 03-23-2010 at 12:29 AM.