Re: [POSSIBLE GRAVE SECURITY HOLD]
- To: Ben Collins <bcollins@debian.org>
- Cc: Joseph Carter <knghtbrd@debian.org>, Martijn van Oosterhout <kleptog@cupid.suninternet.com>, Samuel Tardieu <sam@debian.org>, Adam Di Carlo <adam@onshore.com>, "Huneycutt, Doug" <doug.huneycutt@lmco.com>, 56821@bugs.debian.org, pb@enst.fr, quinot@enst.fr, debian-devel@lists.debian.org
- Subject: Re: [POSSIBLE GRAVE SECURITY HOLD]
- From: Thomas Quinot <thomas@debian.org>
- Date: Wed, 2 Feb 2000 15:17:30 +0100
- Message-id: <20000202151730.B3765@cuivre.fr.eu.org>
- Reply-to: Thomas Quinot <thomas@debian.org>
- In-reply-to: <20000202084316.F7238@visi.net>; from bcollins@debian.org on Wed, Feb 02, 2000 at 08:43:16AM -0500
- References: <2000-02-02-11-38-12+trackit+sam@debian.org> <389823E6.37B56639@cupid.suninternet.com> <20000202045337.A10828@debian.org> <20000202084316.F7238@visi.net>
Le 2000-02-02, Ben Collins écrivait :
> In fact, sparc HARDWARE allows you to boot from tftp, floppy, CD, or any
> harddrive. So am I to suppose that SPARC hardware is insecure by default
> (for physical security)? Of course, and thus I would change it. Am I to
> suppose that it should be made not to do that by default? No, because it
> is setup to be easy to manage by default, and if I want better, I change
> it. Same with the MBR.
No no no. First of all, Sparc hardware allows booting from any medium,
just as PC hardware does. You can password-protect a Sun's PROM,
and likewise you can setup a PC's BIOS to require a password before
booting from floppy.
Debian's MBR includes an extra way of booting from floppy, which is not
documented anywhere, and which has no equivalent in other PC operating
systems. In other words, Debian's default behaviour is different from
the rest of the world's default behaviour, this difference is not at
all made obvious to users, and this difference introduces a new burden
on system administrators who want to control access to the root account
on their machines.
Thomas.
Reply to: