Comment 6 for bug 401503
Revision history for this message
| Scott James Remnant (Canonical) (canonical-scott) wrote Re: [Bug 401503] Re: single user (and other) boot methods allow local users to gain access to root | #6 |
On Tue, 2009-08-11 at 03:00 +0000, Michael Gilbert wrote:
> > Fedora, Debian and all of the other major distributions are shipped in
> > the same configuration as Ubuntu - they do not secure against physical
> > console access.
>
> this is not true. fedora and debian do not use a no-root setup by
> default, which is the flaw that exposes this hole.
>
You can boot both, interrupt the boot loader to display the menu, and
then edit the kernel command-line to include "init=/bin/bash"
This will boot immediately into a root shell bypassing all security
features.
See https:/
20Access
Scott
--
Have you ever, ever felt like this?
Had strange things happen? Are you going round the twist?