From owner-freebsd-questions Fri Apr 24 11:23:02 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA21013 for freebsd-questions-outgoing; Fri, 24 Apr 1998 11:23:02 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from darla.swimsuit.roskildebc.dk (pm24-26.image.dk [194.234.169.218]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA20988 for ; Fri, 24 Apr 1998 11:22:52 -0700 (PDT) (envelope-from root@darla.swimsuit.roskildebc.dk) Received: from localhost (localhost [127.0.0.1]) by darla.swimsuit.roskildebc.dk (8.8.8/8.8.8) with SMTP id CAA07242; Sat, 18 Apr 1998 02:30:03 +0200 (CEST) (envelope-from root@darla.swimsuit.roskildebc.dk) Date: Sat, 18 Apr 1998 02:30:01 +0200 (CEST) From: Leif Neland To: "Ian O'Friel" cc: freebsd-questions@FreeBSD.ORG Subject: Re: Potential Problem.... In-Reply-To: <000101bd6a49$44e5a720$41f14ac2@metallica> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 17 Apr 1998, Ian O'Friel wrote: > I am setting up a system for friends and family to dial-up my PC running > FreeBSD 2.2.5. The machine has Advanced power Management so I edited rc.conf > so that the APM line read "YES" instead of "NO" but I mistakenly pur in "YES > with only one speech mark. I had set my machine up with several groups and > lots of users... but I found that after rebooting this problem caused an > error in the startup procedure and automatically logged in as root. I think > this could be a pontential problem if someone got access to the rc.conf file > diliberately removed a few characters and rebooted the would be logged in as > root which would allow them to create hell...... > > Any comments ? > That's can't happen, because rc.conf is (should) be writable only by root. If there is physical access to the machine, then you should mark the console unsecure in /etc/ttys, otherwise the evil fellow can boot the machine in single user mode, and log in without password. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message