lilo passwd, boot single [was Is Red hat truly flawed?]

[Matt Kemner]

On Tue, 2 May 2000, Bevan Broun wrote:

> I looked at this soln but dont like the way this was being
> handled (passwd in plain text). I think the correct soln is to add   
> lS:S:wait:/sbin/sulogin to /etc/inittab

No, because you can still bypass that with init=/bin/bash

Also, you can bypass lilo altogether by booting from floppy.

I think this is what Christian was referring to when he said 
console access is hard to defend against.
Every time you patch up one hole, there is another one to worry about.

 - Matt