On Mon, 10 Oct 2005, Felipe Alfaro Solana wrote:
> And let's not forget the old standby of simply removing the
hard disk,
> attaching it to another system, and getting at any yummy data that way.
> Security starts with PHYSICAL security, as any security guru will tell
> you. If a system is not physically protected from unauthorized access,
> not much else will be very effective.
That's a valid point, tought some intruders don't want to steal the
machine or the hard drive, as that would make the attack extremely
evident. Instead, it's easier to break into single-user mode and
create a user account used to remotely access the machine by any other
means.
If it bothers you that much put a passwd on grub. It buys you the same thing.
That way it does not cause extra work for people who do not want/need it.
Regards,
Tom Diehl tdiehl(a)rogueind.com Spamtrap address mtd123(a)rogueind.com