Re: Protecting root security

To: debian-user@lists.debian.org
Subject: Re: Protecting root security
From: wcurry@cts.com
Date: Mon, 17 May 1999 10:13:24 -0700
Message-id: <[🔎] 19990517101324.C3843@verb.syntaxsleuth.org>
In-reply-to: <[🔎] 374210F3.EB2B5409@thorn.net>; from Tommy Malloy on Tue, May 18, 1999 at 09:16:35PM -0400
References: <[🔎] 374210F3.EB2B5409@thorn.net>

I suppose it you used cfs (as another poster suggested), you could keep
someone from reading your disk.  But you couldn't keep them from
wiping it clean with fdisk and being generally destructive.
I'm not a security guru, but I think it's still one of the most important
rules to remember: physical access = null security.  As I look at the
companies I've worked for in the last few years, they have all 
been aware of this.  I don't think Linux is going to take a hit
for this in the corporate mindset.

Tommy Malloy <tjm1@thorn.net> wrote:

> Doesn't the fact that I can go to any Linux box with an install disk or
> cd and gain root access mean that the all Linux systems are
> fundamentally insecure?   Perhaps the install process could be changed
> so that root password, or some other verification system is required,
> before a reinstall is permitted.  It is true that compromising a system
> this way requires unfettered access to the box.   However as Linux is
> used more and more in commercial environments this issue will need to be
> addressed.
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
> 
>

Reply to:

Follow-Ups:
- Re: Protecting root security
  - From: Marek Habersack <grendel@vip.net.pl>

References:
- Protecting root security
  - From: Tommy Malloy <tjm1@thorn.net>

Prev by Date: Re: mount drive through internet?
Next by Date: Re: parallelizing fsck
Previous by thread: Re: Protecting root security
Next by thread: Re: Protecting root security
Index(es):
- Date
- Thread