© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
e3ace39
(Get the code!)
> Is it possible to ask for a password even when no root password is set? Maybe ask the password of uid=1000
No. We need a way that users can reset their lost password
> I think this should be fixed for all users as its a security hole
You need to do a lot more to create "local security"!
* Change the boot order so that you can't boot from cdrom or usb. If not, i can boot your system with Knoppix and mount your disks.
* Set a bios password so that you can't change the boot order
* Set a root password so that you can't interrupt the boot process
* Lock the case of your computer so that nobody can remove the harddisk from your computer and read it with another computer
* Better: Lock your computer into "safe", so that users can only reach keyboard and mouse
* Even better: Encrypt your file system
You don't create local security merely by setting a root password. You need to do the whole shebang.