[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: LSB specification of runlevels

On Thu, Jul 05, 2001 at 02:50:43PM +0100, Stephen Stafford wrote:
> On Thursday 05 July 2001 2:17 pm, Michael Stone wrote:
> > That was totally unnecessary. Booting to single user (which is a
> > runlevel) would have been sufficient.
> 
> No, it wasn't.  By default single user (runlevel 1) requires the root 
> password before you are dropped to a shell.  It is a security 
> precaution which makes it harder for an attacker with physical access 
> to do bad things.
> 
> For those who have not changed this default behaviour (I for one have 
> absolutely no idea how to go about changing this behaviour, and since I 
> think it is sensible behaviour I am not going to start trying to find 
> out either) had to recover by using init=/bin/sh.  I had to talk a few 
> people through this process on IRC at the time.

Well, you gave a bunch of people on IRC bad info. sulogin doesn't link
against pam, so no amount of pam breakage will break single user logins.

-- 
Mike Stone
Reply to: