RE: Linux Single Mode

["Jason Pierce" <jason pcsc net>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

If NT is like 9x,  you could simply reboot, hold down F8 durring OS
starting, select commandline mode, then use regedit to change admin
password(which I assume is in the system registry)

Jason

*********** REPLY SEPARATOR  ***********

On 08|31|2000| at 10|46 AM| James Q. Stansfield wrote:

R>> No, you put a boot floppy in (like DOS or floppy linux dists) and hit
R>> the reset
R>> button, the power button, or pull the plug, now you just need to boot
R>> the
R>> floppy. Now you'r in the same spot as linux.
R>
R>	Really, I'd like to see this floppy that will give you access to change
the
R>NT Administrator's password without any problem.
R>
R>> Think about the Win9x login prompt and it's cancel button.
R>> I know people that think you need the password to get into
R>> a Win9x box. It's not documented in BIG LETTERS either.
R>
R>	Ah yes, but no one touts that WIN 9x is a secure system either. Also, if
R>you hit cancel most networking functions get disabled. Ever bypass the
login
R>prompt and then try to browse your Network Neighbourhood?
R>
R>
R>
R>	What you need to understand is that I know any machine can be
compromised
R>via physical access. You need to jump through some hoops to get into NT
etc.
R>Hey, you need a boot floppy. Linux doesn't. You just restart in single
mode
R>and voila, root access as you can change the root password and have fun.
R>	Let's take the hypothetical situation: I've an evil person bent on
cracking
R>into any system I find. I happen upon a unattended server room. I figure
I
R>have five minutes. I have nothing on my person but a pack of Altoids
mints.
R>
R>	NT Box: What can I do if the screen is locked?
R>		Get the computer to restart via power switch.
R>		I have no boot disk, or NT Setup CDROM so there isn't much aside from
R>physically attacking the machine.
R>
R>	Linux Box: What can I do if the screen is locked?
R>		Get the computer to restart either via 3-finger salute (if not
disabled)
R>or via power switch.
R>		Start linux in single mode.
R>		Change the root password.
R>		I now have root access and have locked people out of the root account
for
R>at least five minutes or so. Now I can do evil things etc...
R>
R>	Yes I know none of this would happen if I took proper precautions on the
R>linux box via LILO passwords etc. However, back to my original point,
where
R>does this information reside about the single mode entrance? Not in any
R>manual I've read to date. Granted these have been few...
R>
R>
R>
R>_______________________________________________
R>Redhat-install-list mailing list
R>Redhat-install-list redhat com
R>https://listman.redhat.com/mailman/listinfo/redhat-install-list


-----BEGIN PGP SIGNATURE-----
Version: Encrypted with PGP Plugin for Calypso

iQA/AwUBObAqY9l538EwQLoHEQLWnwCfeUDoc/r1mBhASExQ3G6+ZP3aDSEAoKLt
HaOWHYIrmreFYtz+bsNX0/bb
=s/+Q
-----END PGP SIGNATURE-----