| 1 |
On Sat, 2004-01-17 at 20:29, Paul de Vrieze wrote: |
| 2 |
> On Saturday 17 January 2004 18:06, Brad House wrote: |
| 3 |
> > no, the rcscripts must now parse the kernel commandline opts |
| 4 |
> > to get a few options. There's really not many other ways to |
| 5 |
> > do it. Besides you just proved by your statement that someone |
| 6 |
> > could instead pass init=/bin/sh and override any sort of |
| 7 |
> > init process, so trying to make the 'cdroot' option secure |
| 8 |
> > is obsurd, as there's 10 million other ways to get in if you |
| 9 |
> > have direct access to the computer. |
| 10 |
> |
| 11 |
> The big difference is that init=/bin/sh does not give you a normal working |
| 12 |
> system, cdboot however could be abused to get a normal functioning |
| 13 |
> passwordless console. That would allow incapable systemadmins to decide to do |
| 14 |
> this, or even tell others to do it (the latter I want to prevent). |
| 15 |
> |
| 16 |
|
| 17 |
I _did_ say it already, but you apparently did not want to listen - the |
| 18 |
kernel opts is not needed, as there is no need to be dynamic. Its |
| 19 |
either a livecd or not. And as Paul did mention, it might be open for |
| 20 |
exploit, although 'init=/bin/bash' will work as well. |
| 21 |
|
| 22 |
The baselayout ebuild will be modified to do changes if USE=livecd, as |
| 23 |
it is sane, and I imagine some other things will need special livecd |
| 24 |
tweaking as well. Meaning, if USE=livecd, pkg_postinst() will |
| 25 |
'echo CDBOOT=1 >> ${ROOT}/etc/rc.conf', and do whatever else. |
| 26 |
|
| 27 |
|
| 28 |
Thanks, |
| 29 |
|
| 30 |
-- |
| 31 |
|
| 32 |
Martin Schlemmer |
| 33 |
Gentoo Linux Developer, Desktop/System Team Developer |
| 34 |
Cape Town, South Africa |
Archives