Re: Linux Single Mode

[micros50 <micros50 computer net>]

But, at this stage, where someone has access to the machine itself, and
they can insert boot floppies, bring the machine down and back in single
user mode and then do some nasty things from the console, we are dealing
with a physical access problem more than anything else. Once somebody can
gain physical access to the buildings or rooms where the servers are
physically kept they can do anything from switching to single mode and
making alterations to the system, to loading in floppies, to stealing
entire peices of equipment, etc. But if they really want to screw things
up and they have physical access to the machine, a pair of wire cutters
can also do the trick. Especially when power cables, ethernet cables, etc.
are cut. Or, a common hammer can bring down the most secure server in a
few cripling blows, don't matter if it's Linux, NT, or whatever. Or if the
person really plays for keeps, a bottle of petrol and match can bring the
toughest systems down quite quickly.

Here we are dealing with a problem of physical access restricition which
is no longer so much of a software/hardware security concern. If system
security is vital then it is just as important to restrict physical access
as to restrict remote access via firewalls, secure software, etc. Elements
of phsysical access security are of course, secure premises, fences,
locks, alarms, guards, armed guards if need be, surveillance, personel 
identification and restriction. 



On Thu, 31 Aug 2000, Kevin Colby wrote:

> To take it further, a floppy could be fairly easily scripted to
> automatically boot and wipe any and drives it can find.
> Any OS would be toast and all I have to do is walk in, push
> in the floppy and hit the reset button.
> 
> 	- Kevin Colby
> 	  kevinc grainsystems com
> 
>