The issue for now is clear: you can't let your, say, laptop to anybody
for an hour or even less without risking ha may easily get root access
and maybe change your password or modify your system. It can simply be
used to read "confidential" files, like personal mail, not like military
secret but ju
Milan wrote the following on 10.11.2007 16:56
<<-snip->>
> All in all, I'd rather suggest to activate password-locked GRUB, but I
> understand this question is hard to decide. Does anybody see other
> agruments on both sides?
against:
helping users on mailing lists or irc, with boot problems.
On Sat, 2007-11-10 at 17:41 +0100, Thilo Six wrote:
> Milan wrote the following on 10.11.2007 16:56
>
> <<-snip->>
>
> > All in all, I'd rather suggest to activate password-locked GRUB, but I
> > understand this question is hard to decide. Does anybody see other
> > agruments on both sides?
>
>
On 11/11/07, Chris Warburton <[EMAIL PROTECTED]> wrote:
>
> On Sat, 2007-11-10 at 17:41 +0100, Thilo Six wrote:
> > Milan wrote the following on 10.11.2007 16:56
> >
> > <<-snip->>
> >
> > > All in all, I'd rather suggest to activate password-locked GRUB, but I
> > > understand this question is har
> The only extra security measure I think is worth debating is full disk
> encryption.
I assume that by "full disk", you mean the areas that may have
personal data. Several places discuss this concept and I understand
that there is already an option in the Alternate CD to encrypt /home/.
Have a l
Chris Warburton wrote:
> On Sat, 2007-11-10 at 17:41 +0100, Thilo Six wrote:
>> Milan wrote the following on 10.11.2007 16:56
>>
>> <<-snip->>
>>
>>> All in all, I'd rather suggest to activate password-locked GRUB, but I
>>> understand this question is hard to decide. Does anybody see other
>>> agr
OK, just forget the GRUB password idea, I've understood how it can
become a complete mess. Sorry for the idea...
But what about that?
unggnu wrote:
>
>
> I like the way Ubuntu handles root that always sudo is needed so why we
> don't make it with Recovery mode too? Just don't autologin root like
On Nov 4, 2007 6:35 PM, Oystein Viggen <[EMAIL PROTECTED]> wrote:
> * ["Nicolas Deschildre"]
>
> > My point was not about the parameter itself. My point was about the
> > ability to edit the kernel parameters while booting.
> > IIRC lilo won't allow you that.
>
> http://www.gnu.org/software/grub/ma
Nicolas Deschildre wrote the following on 10.11.2007 07:06
<<-snip->>
> Thanks for the pointer.
> But then, why not use this password feature by default to avoid anyone
> to edit boot parameter and become root?
because it´s as easy as to plugin a LiveCD and overcome that.
--
Thilo
key: 0x4A4
On 11/10/07, Thilo Six <[EMAIL PROTECTED]> wrote:
> Nicolas Deschildre wrote the following on 10.11.2007 07:06
>
> <<-snip->>
>
> > Thanks for the pointer.
> > But then, why not use this password feature by default to avoid anyone
> > to edit boot parameter and become root?
>
> because it´s as easy
Nicolas Deschildre wrote the following on 11.11.2007 07:22
> On 11/10/07, Thilo Six <[EMAIL PROTECTED]> wrote:
>> Nicolas Deschildre wrote the following on 10.11.2007 07:06
>>
>> <<-snip->>
>>
>>> Thanks for the pointer.
>>> But then, why not use this password feature by default to avoid anyone
>>>
Op zaterdag 10-11-2007 om 14:06 uur [tijdzone +0800], schreef Nicolas
Deschildre:
> But then, why not use this password feature by default to avoid anyone
> to edit boot parameter and become root?
In addition to what was mentioned already: GRUB only knows about plain
us keyboards, while many/most
On Sat, 2007-11-10 at 14:06 +0800, Nicolas Deschildre wrote:
> But then, why not use this password feature by default to avoid anyone
> to edit boot parameter and become root?
>
Because it adds a level of complexity without a significant gain.
The additional complexity is that users would have t
On Nov 12, 2007 2:15 PM, Scott James Remnant <[EMAIL PROTECTED]> wrote:
> On Sat, 2007-11-10 at 14:06 +0800, Nicolas Deschildre wrote:
[...]
>
> For the simplest installations, GRUB could perhaps read /etc/shadow and
> accept any user's password -- but that would be error-prone, open to
> exploit
Nicolas Deschildre wrote the following on 12.11.2007 11:04
<<-snip->>
> This is EOT for me.
>
> Nicolas
Nicolas if i sound rude in my last mail i apologize for that.
bye
--
Thilo
key: 0x4A411E09
--
Ubuntu-devel-discuss mailing list
Ubuntu-devel-discuss@lists.ubuntu.com
Modify settings or
15 matches
Mail list logo
