Re: LSB specification of runlevels
On Thu, Jul 05, 2001 at 02:50:43PM +0100, Stephen Stafford wrote:
> On Thursday 05 July 2001 2:17 pm, Michael Stone wrote:
> > That was totally unnecessary. Booting to single user (which is a
> > runlevel) would have been sufficient.
>
> No, it wasn't. By default single user (runlevel 1) requires the root
> password before you are dropped to a shell. It is a security
> precaution which makes it harder for an attacker with physical access
> to do bad things.
>
> For those who have not changed this default behaviour (I for one have
> absolutely no idea how to go about changing this behaviour, and since I
> think it is sensible behaviour I am not going to start trying to find
> out either) had to recover by using init=/bin/sh. I had to talk a few
> people through this process on IRC at the time.
Well, you gave a bunch of people on IRC bad info. sulogin doesn't link
against pam, so no amount of pam breakage will break single user logins.
--
Mike Stone
Reply to: