[22514] in bugtraq
Re: Possible Issue with Netinfo and Mac OS X
daemon@ATHENA.MIT.EDU (Marc Liyanage)
Tue Sep 4 00:52:12 2001
Mime-Version: 1.0
Message-Id: <p0510101bb7b9a18c3de4@10.0.1.3>
In-Reply-To: <B7B8A47A.351E%Marukka@msec.net>
Date: Mon, 3 Sep 2001 23:37:37 +0200
To: bugtraq@securityfocus.com
From: Marc Liyanage <liyanage@access.ch>
Content-Type: text/plain; charset="us-ascii"
>Other issues for OS X is that anyone could boot into single user mode and
>have root with out any authentication. Although this usually isn't a problem
>for servers, it is for computers used in K12 and higher education along with
>kiosks.
I *think* this can be prevented by setting an Open Firmware password
on newer machines which support the feature.
This will prevent
- Single user boot
- Verbose boot
- Hitting the Alt key to select a different boot volume
and probably other stuff...
http://homepage.mac.com/codesamurai/.Public/Texts/Open%20Firmware%20-%20Password.txt
I'm not sure if they fixed that password bypass thing
by changing the amount of RAM, though. But at least
you have to open up the machine to do this.
-Marc
--
_________________________________________________________________
Marc Liyanage liyanage@access.ch
http://www.entropy.ch
ICQ 5077985
Yoda I am. Grammar I can't.
_________________________________________________________________
