> -----Original Message----- > From: Linux on 390 Port [mailto:[EMAIL PROTECTED] On > Behalf Of Mark Post > Sent: Tuesday, February 05, 2008 2:35 PM > To: LINUX-390@VM.MARIST.EDU > Subject: Re: preventing direct root login on the 3270 console > for SLES10 > > > >>> On Tue, Feb 5, 2008 at 3:15 PM, in message > <[EMAIL PROTECTED] > eing.com>, > "Stricklin, Raymond J" <[EMAIL PROTECTED]> wrote: > > -snip- > > It doesn't seem like a good idea in practice, though I > couldn't put my > > finger on exactly why. > > Ohh, I can. If login for non-root users is broken for any > reason, you're done. (Seen that happen a number of times on > Intel/AMD systems.) Securing the physical console of a > midrange server is usually not an issue, if it's on the > raised floor. Not sure who would be wanted to do this. > Certainly not anyone that's going to get called in the middle > of the night to fix it. > > > Mark Post
Easy to bork up in this case: sudo touch /etc/nologin sudo /sbin/shutdown -r now -- John McKown Senior Systems Programmer HealthMarkets Keeping the Promise of Affordable Coverage Administrative Services Group Information Technology The information contained in this e-mail message may be privileged and/or confidential. It is for intended addressee(s) only. If you are not the intended recipient, you are hereby notified that any disclosure, reproduction, distribution or other use of this communication is strictly prohibited and could, in certain circumstances, be a criminal offense. If you have received this e-mail in error, please notify the sender by reply and delete this message without copying or disclosing it. ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
