LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)
-   -   secure login password (https://www.linuxquestions.org/questions/linux-server-73/secure-login-password-4175449536/)

!! hack-back !! 02-10-2013 08:12 AM
secure login password
 
hello minds ,
how i can secure login for debian squeeze then no one can reset the root password if in cd or in rw init=/bin/bash command ??
thanks guys

TobiSGD 02-10-2013 08:17 AM
It is pretty impossible to secure a machine when someone has physical access to it, but there are a few things that you can do to make it harder for attacker:
- Attach a physical lock to the case, so that nobody can open the machine to reset the BIOS or remove the harddisk
- Disable boot from CD/DVD and USB in the BIOS and set up a password for the BIOS
- Remove the "Recovery Mode" entries from your Grub and set up password protection for it.

!! hack-back !! 02-10-2013 08:20 AM
-1st he can remove
-2nd he can reset the bios password
-3rd it is the 1st tip

is there any other way that i can secure some files ? so then he cant open them with nano or cat ?
thanks

TobiSGD 02-10-2013 08:53 AM
As I stated before, there is no way to make a machine secure if the attacker has physical access, you only can make it harder.

But if you just want to secure files use an encrypted container file or a encrypted partition that is only mounted when the files are needed and immediately unmounted after that.

!! hack-back !! 02-10-2013 09:18 AM
what i want to secure is config files for lusca squid cache
i cant make password for them like any program in windows that secure files and folders ?
thanks for your help :)

TobiSGD 02-10-2013 10:25 AM
Just put them into an encrypted container and mount that container before starting that daemon.

Skaperen 02-10-2013 01:57 PM
Or move the machine to a trusted secure physical location.

Habitual 02-10-2013 03:28 PM
HOWTO: Password protect your GRUB entries

!! hack-back !! 02-11-2013 03:54 AM
Quote:
Originally Posted by Habitual (Post 4888656)
root@debian:~# grub
-bash: grub: command not found

fortran 02-11-2013 04:18 AM
Do not use terminal to go on Grub prompt.
Boot your system and press escape to go in recovery mode.
Here you will see the list of current kernels and old kernels.
See the instruction which is mentioned at bottom to reach on Grub prompt.

But why do you want to go there?

TobiSGD 02-11-2013 04:54 AM
Quote:
Originally Posted by pavi_kanetkar (Post 4888944)
Do not use terminal to go on Grub prompt.
Boot your system and press escape to go in recovery mode.
Here you will see the list of current kernels and old kernels.
See the instruction which is mentioned at bottom to reach on Grub prompt.

But why do you want to go there?
Please read threads before replying. If you would have read the thread you would have known that the OP is trying to password protect the system, including the Grub bootloader.

@!! hack-back !!: The link Habitual gave is unfortunately for grub Legacy, while Debian Squeeze uses Grub 2. Have a look here: http://www.thegeekstuff.com/2011/09/...sword-command/

!! hack-back !! 02-11-2013 05:32 AM
thank you very much TobiSGD

!! hack-back !! 02-11-2013 05:40 AM
i dont have /etc/grub.conf
i have /etc/default/grub
is this the same file in debian squeeze?

!! hack-back !! 02-11-2013 05:59 AM
the solution
http://www.linuxquestions.org/questi...-a-4175449638/

TobiSGD 02-11-2013 06:29 AM
Thanks for posting back the solution. Please mark this thread as solved using the thread tools at the top of the thread.


All times are GMT -5. The time now is 12:20 AM.