LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 02-10-2013, 08:12 AM   #1
!! hack-back !!
Member
 
Registered: Nov 2009
Posts: 183

Rep: Reputation: 2
secure login password


hello minds ,
how i can secure login for debian squeeze then no one can reset the root password if in cd or in rw init=/bin/bash command ??
thanks guys
 
Old 02-10-2013, 08:17 AM   #2
TobiSGD
Moderator
 
Registered: Dec 2009
Location: Germany
Distribution: Whatever fits the task best
Posts: 17,148
Blog Entries: 2

Rep: Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864
It is pretty impossible to secure a machine when someone has physical access to it, but there are a few things that you can do to make it harder for attacker:
- Attach a physical lock to the case, so that nobody can open the machine to reset the BIOS or remove the harddisk
- Disable boot from CD/DVD and USB in the BIOS and set up a password for the BIOS
- Remove the "Recovery Mode" entries from your Grub and set up password protection for it.
 
Old 02-10-2013, 08:20 AM   #3
!! hack-back !!
Member
 
Registered: Nov 2009
Posts: 183

Original Poster
Rep: Reputation: 2
-1st he can remove
-2nd he can reset the bios password
-3rd it is the 1st tip

is there any other way that i can secure some files ? so then he cant open them with nano or cat ?
thanks
 
Old 02-10-2013, 08:53 AM   #4
TobiSGD
Moderator
 
Registered: Dec 2009
Location: Germany
Distribution: Whatever fits the task best
Posts: 17,148
Blog Entries: 2

Rep: Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864
As I stated before, there is no way to make a machine secure if the attacker has physical access, you only can make it harder.

But if you just want to secure files use an encrypted container file or a encrypted partition that is only mounted when the files are needed and immediately unmounted after that.

Last edited by TobiSGD; 02-10-2013 at 08:54 AM.
 
Old 02-10-2013, 09:18 AM   #5
!! hack-back !!
Member
 
Registered: Nov 2009
Posts: 183

Original Poster
Rep: Reputation: 2
what i want to secure is config files for lusca squid cache
i cant make password for them like any program in windows that secure files and folders ?
thanks for your help
 
Old 02-10-2013, 10:25 AM   #6
TobiSGD
Moderator
 
Registered: Dec 2009
Location: Germany
Distribution: Whatever fits the task best
Posts: 17,148
Blog Entries: 2

Rep: Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864
Just put them into an encrypted container and mount that container before starting that daemon.
 
Old 02-10-2013, 01:57 PM   #7
Skaperen
Senior Member
 
Registered: May 2009
Location: WV, USA
Distribution: Xubuntu, Slackware, Amazon Linux
Posts: 1,903
Blog Entries: 21

Rep: Reputation: 126Reputation: 126
Or move the machine to a trusted secure physical location.
 
Old 02-10-2013, 03:28 PM   #8
Habitual
LQ Veteran
 
Registered: Jan 2011
Location: Yawnstown, Ohio
Distribution: Mojave
Posts: 9,374
Blog Entries: 37

Rep: Reputation: Disabled
HOWTO: Password protect your GRUB entries
 
Old 02-11-2013, 03:54 AM   #9
!! hack-back !!
Member
 
Registered: Nov 2009
Posts: 183

Original Poster
Rep: Reputation: 2
Quote:
Originally Posted by Habitual View Post
root@debian:~# grub
-bash: grub: command not found
 
Old 02-11-2013, 04:18 AM   #10
fortran
Member
 
Registered: Nov 2011
Location: Cairo, Egypt
Distribution: CentOS, RHEL, Fedora
Posts: 300
Blog Entries: 2

Rep: Reputation: 51
Do not use terminal to go on Grub prompt.
Boot your system and press escape to go in recovery mode.
Here you will see the list of current kernels and old kernels.
See the instruction which is mentioned at bottom to reach on Grub prompt.

But why do you want to go there?
 
Old 02-11-2013, 04:54 AM   #11
TobiSGD
Moderator
 
Registered: Dec 2009
Location: Germany
Distribution: Whatever fits the task best
Posts: 17,148
Blog Entries: 2

Rep: Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864
Quote:
Originally Posted by pavi_kanetkar View Post
Do not use terminal to go on Grub prompt.
Boot your system and press escape to go in recovery mode.
Here you will see the list of current kernels and old kernels.
See the instruction which is mentioned at bottom to reach on Grub prompt.

But why do you want to go there?
Please read threads before replying. If you would have read the thread you would have known that the OP is trying to password protect the system, including the Grub bootloader.

@!! hack-back !!: The link Habitual gave is unfortunately for grub Legacy, while Debian Squeeze uses Grub 2. Have a look here: http://www.thegeekstuff.com/2011/09/...sword-command/
 
Old 02-11-2013, 05:32 AM   #12
!! hack-back !!
Member
 
Registered: Nov 2009
Posts: 183

Original Poster
Rep: Reputation: 2
thank you very much TobiSGD
 
Old 02-11-2013, 05:40 AM   #13
!! hack-back !!
Member
 
Registered: Nov 2009
Posts: 183

Original Poster
Rep: Reputation: 2
i dont have /etc/grub.conf
i have /etc/default/grub
is this the same file in debian squeeze?
 
Old 02-11-2013, 05:59 AM   #14
!! hack-back !!
Member
 
Registered: Nov 2009
Posts: 183

Original Poster
Rep: Reputation: 2
the solution
http://www.linuxquestions.org/questi...-a-4175449638/
 
1 members found this post helpful.
Old 02-11-2013, 06:29 AM   #15
TobiSGD
Moderator
 
Registered: Dec 2009
Location: Germany
Distribution: Whatever fits the task best
Posts: 17,148
Blog Entries: 2

Rep: Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864Reputation: 4864
Thanks for posting back the solution. Please mark this thread as solved using the thread tools at the top of the thread.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Ubuntu 11.04 encrypted LVM password not working after user login password change prateekm21 Linux - Security 0 10-29-2011 01:20 PM
seen a Visual Password login for Linux? like the droids 9 circle password? szboardstretcher Linux - Software 3 03-07-2011 09:49 AM
secure login password shaveta Linux - Security 1 01-20-2011 12:25 AM
Password Recovery in Edubuntu 7.04 - In Terminal, Root Login : su , password : ????? farhannaeem13 Linux - Security 3 11-30-2007 09:59 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 08:25 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration