Re: ***HUGE*** security hole??!! (Re: Lost root passwd)
But people can always yank the power cord. Follow Paul's advice -- make the
machine physically in-accessible. Lock it, fence it in, whatever. Locking
racks is also nice. That way people can't even see the machine, just a big
cabinet.
What if it is a workstation in a lab? Then disable as much as you can. Make
sure bios is safe if it is a x86 box. This is why real workstations are nice
-- they are much more secure than x86 PC's.
On 10-Oct-98 Maarten Bezemer wrote:
>>
>> ANOTHER REASON TO PLACE THE SERVERS IN A PHYSICALLY SECURE LOCATION:
>>
>> I was having an important discussion with a customer that I built a linux
>> server for. He brought his young child with him to his office that
>> evening. The child behaves very poorly. Guess what button he pressed? The
>> reset button on the primary server! This behavior is not limited to
>> children, so I suggest that it is best to protect the location. Just make
>> a partition and use strong fencing mesh for ventilation so you won't be
>> creating a sauna room. Leave the lights off because people like to look in
>> and see all the pretty colored LEDs :)
>
> I was thinking of some other solution: don't connect the reset switch to
> the main board... probably one might want to disable (like: always enable)
> the power switch. :-)
>
> ---
> Maarten Bezemer
>
>
>
> --
> Unsubscribe? mail -s unsubscribe debian-user-request@lists.debian.org <
> /dev/null
----------------------------------
E-Mail: Shaleh <shaleh@livenet.net>
Date: 10-Oct-98
Time: 13:10:30
This message was sent by XFMail
----------------------------------
Reply to: