On Tue, 2009-08-11 at 03:00 +0000, Michael Gilbert wrote:
> > Fedora, Debian and all of the other major distributions are shipped in
> > the same configuration as Ubuntu - they do not secure against physical
> > console access.
>
> this is not true. fedora and debian do not use a no-root setup by
> default, which is the flaw that exposes this hole.
>
You can boot both, interrupt the boot loader to display the menu, and
then edit the kernel command-line to include "init=/bin/bash"
This will boot immediately into a root shell bypassing all security
features.
On Tue, 2009-08-11 at 03:00 +0000, Michael Gilbert wrote:
> > Fedora, Debian and all of the other major distributions are shipped in
> > the same configuration as Ubuntu - they do not secure against physical
> > console access.
>
> this is not true. fedora and debian do not use a no-root setup by
> default, which is the flaw that exposes this hole.
>
You can boot both, interrupt the boot loader to display the menu, and
then edit the kernel command-line to include "init=/bin/bash"
This will boot immediately into a root shell bypassing all security
features.
See https:/ /wiki.ubuntu. com/SecurityTea m/Policies# Reasonable% 20Physical%
20Access
Scott
--
Have you ever, ever felt like this?
Had strange things happen? Are you going round the twist?