Deceptive security?

bug-grub

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Deceptive security?

From:	Dirk Zöllner
Subject:	Deceptive security?
Date:	Thu, 28 Nov 2002 08:55:40 +0100
User-agent:	Mozilla/5.0 (Windows; U; Win95; de-DE; rv:1.1) Gecko/20020826

Hi.

I wanted to lock some menu entries in the grub menu.

I cite info grub -> Section Security: [...], so only administrators canstart the interactive operations (i.e. editing menu entries and [...]

I entered the grub shell, generated the MD5 password and inserted it inthe file grub.conf. The appropriate menu entry:


title Redhat 8.0
password --md5 something_secret
root (hd0,0)
kernel /boot/...
initrd /boot/...

With this entry I can't start the OS, that's OK. Without using thepassword, I can edit this entry via 'e' command, delete via 'd' the'password --md5 ....' line and press 'b' to boot the OS. :-((



And I tried this:

title Redhat 8.0
lock
root (hd0,0)
kernel /boot/...
initrd /boot/...

with no effect. Is this a misconfiguration or a bug?


My system: Redhat 8.0 with grub 0.92


Kind regards

Dirk Zöllner

[Prev in Thread]

Current Thread

[Next in Thread]

Deceptive security?, Dirk Zöllner <=
- Re: Deceptive security?, Yoshinori K. Okuji, 2002/11/28

Prev by Date: Re: does savedefault versus grub.conf/menu.lst
Next by Date: Re: Deceptive security?
Previous by thread: does savedefault versus grub.conf/menu.lst
Next by thread: Re: Deceptive security?
Index(es):
- Date
- Thread