The debian-private mailing list leak, part 1. Volunteers have complained about Blackmail. Lynchings. Character assassination. Defamation. Cyberbullying. Volunteers who gave many years of their lives are picked out at random for cruel social experiments. The former DPL's girlfriend Molly de Blanc is given volunteers to experiment on for her crazy talks. These volunteers never consented to be used like lab rats. We don't either. debian-private can no longer be a safe space for the cabal. Let these monsters have nowhere to hide. Volunteers are not disposable. We stand with the victims.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Getting root on Linux

Somebody has pointed out to me a serious security hole that allows anybody
with physical access to a Linux machine to easily gain root.

This is how it is done:

1. Reboot the machine.  Ctrl-Alt-Del from a text console will do.
2. At LILO prompt, press shift
3. Type: Linux init=/bin/bash
   and press Enter.

You now have a root shell.

This can be very dangerous for anybody running a Linux lab.

I really don't see the need for the init option -- it should probably be
removed anyway.

Since every Linux distribution I have seen ships in this dangerous state,
this can be quite a problem.



--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-private-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .