Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience

To: Debian User List <debian-user@lists.debian.org>
Subject: Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
From: Robin <rc.rattusrattus@gmail.com>
Date: Fri, 21 Mar 2014 13:29:38 +0000
Message-id: <[🔎] CAOZWb-pAm8gh4DTbf-pGVfU+sUEUqjFAxwP_tjyASnvZLkjOQw@mail.gmail.com>
In-reply-to: <[🔎] 20140321111818.GB10490@darac.org.uk>
References: <[🔎] CAOsGNSSDt+5w-tEAiJNkFNkL0TMcLF4LjUiOkkW+oXDFiei2pQ@mail.gmail.com> <[🔎] 20032014141516.0992330632ae@desktop.copernicus.demon.co.uk> <[🔎] 20140321092421.GA15054@bryant.redmars.org> <[🔎] 20140321095203.GB4030@copernicus.demon.co.uk> <[🔎] 20140321102454.GA16657@bryant.redmars.org> <[🔎] 21032014103947.7b37bc831857@desktop.copernicus.demon.co.uk> <[🔎] CAOZWb-q+WwdAdB6Nz0RrHPRqvmZC0_Y3oi36V55A2H7yRFO9OQ@mail.gmail.com> <[🔎] 20140321111818.GB10490@darac.org.uk>

On 21 March 2014 11:18, Darac Marjal <mailinglist@darac.org.uk> wrote:
> On Fri, Mar 21, 2014 at 11:06:03AM +0000, Robin wrote:
>> I may have missed something. If someone has physical access to your
>> machine can't they just power off and go into single user mode and
>> change the root password?
>
> Maybe, maybe not. Console access doesn't have to mean complete access.
> The scenario I always have in my head for these sorts of things is a
> Computer Lab at a university/college. You can allow anyone to come up
> and use the machine via the keyboard/mouse/VDU attached to it, but to
> counter the attack vector you mention, you simply lock the computer
> itself away in a secure cage under the desk. That also stops the
> "security vector" of someone simply picking up the machine and walking
> off with it ;)
>

Sorry my mail was a bit terse. I was referring to whether a DM is more
secure than startx when there is physical access to a machine.

-- 
rob

Reply to:

References:
- Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Zenaan Harkness <zen@freedbms.net>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Brian <ad44@cityscape.co.uk>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Jonathan Dowland <jmtd@debian.org>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Brian <ad44@cityscape.co.uk>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Jonathan Dowland <jmtd@debian.org>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Brian <ad44@cityscape.co.uk>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Robin <rc.rattusrattus@gmail.com>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Darac Marjal <mailinglist@darac.org.uk>

Prev by Date: Re: Automatic partition creation, root partition too small
Next by Date: Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
Previous by thread: Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
Next by thread: Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
Index(es):
- Date
- Thread