Re: ***HUGE*** security hole??!! (Re: Lost root passwd)
When Steve Lamb wrote, I replied:
>
> On Mon, 12 Oct 1998 14:58:39 +0100, Ralf G. R. Bergs wrote:
>
> >>This is a security hole ONLY if someone has access to the machine
> >>itself.
These techniques are useable on any computer running any operating
system
not just Linux or UNIX. Physical access to the machine means that you
have no security. And as others have pointed out, if someone REALLY
wants
your data and the machine is turned on, it's extremely difficult to
secure
your data. Possible, but expensive.
>
> >This is not exactly uncommon, especially in computer labs.
>
> Basic Unix Secruity 101 - If the person has physical access to the
> machine, there *IS* *NO* *SECURITY*. Want proof?
>
> I pop the HD out, place it as slave on my machine, mount what I want, end
> of story. Before this thread goes any further I recommend that anyone who
> considers this a "threat" that is addressable by Debian to go read "Practical
> Unix Security" from O'Reilly and Associates. Esp. anything relating to the
> physical security of the machine.
>
> --
> Steve C. Lamb | I'm your priest, I'm your shrink, I'm your
> ICQ: 5107343 | main connection to the switchboard of souls.
> -------------------------------+---------------------------------------------
>
> --
> Unsubscribe? mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
--
-----------------------------------------
Ralph Winslow rjw@nac.net
The IQ of the group is that of the member
whose IQ is lowest divided by the number
of members.
Reply to: