Also, I wonder why the root password is asked for when it is set? By
your argumentation, it provides no additional security.
--
rescue mode doesn't ask for user name (!) and password
https://bugs.launchpad.net/bugs/588080
You received this bug notification because you are a member of Ubuntu
Bugs,
@Jamie: This is wrong. Prompting for user name and password is the only
possible way for local security, assuming that * the chassis is
protected, * the BIOS is set up correctly and protected by a BIOS
password, * GRUB is protected by a GRUB password. In this case:
* you can get direct root access
Prompting for a username doesn't provide any additional security when
you have direct access to the machine for the same reasons that
https://wiki.ubuntu.com/SecurityTeam/FAQ#Rescue%20Mode discusses.
Unmarking as a security vulnerability and marking "Won't Fix" in
friendly-recovery for now. If some
Thank you for moving the package.
Is there a reason why there should be no password authentication in the
boot loader by default? However, I think it isn't absolutely necessary
(although then you can use GRUB to boot a foreign kernel and bypass
Ubuntu's local security even if the BIOS boot process
"rescue" is the installer's rescue mode, which isn't what you're
referring to here; I think you mean friendly-recovery.
** Package changed: rescue (Ubuntu) => friendly-recovery (Ubuntu)
--
rescue mode doesn't ask for user name (!) and password
https://bugs.launchpad.net/bugs/588080
You received
I don't intend to require password authentication in the boot loader by
default, sorry. The facilities are there for you to enable this,
though.
** Package changed: grub (Ubuntu) => grub2 (Ubuntu)
** Changed in: grub2 (Ubuntu)
Status: New => Won't Fix
--
rescue mode doesn't ask for user
** Visibility changed to: Public
--
rescue mode doesn't ask for user name (!) and password
https://bugs.launchpad.net/bugs/588080
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
h
