List Archive: gentoo-releng
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
On Saturday 17 January 2004 18:06, Brad House wrote:
> no, the rcscripts must now parse the kernel commandline opts
> to get a few options. There's really not many other ways to
> do it. Besides you just proved by your statement that someone
> could instead pass init=/bin/sh and override any sort of
> init process, so trying to make the 'cdroot' option secure
> is obsurd, as there's 10 million other ways to get in if you
> have direct access to the computer.
The big difference is that init=/bin/sh does not give you a normal working
system, cdboot however could be abused to get a normal functioning
passwordless console. That would allow incapable systemadmins to decide to do
this, or even tell others to do it (the latter I want to prevent).
Paul de Vrieze