Path: utzoo!utgpu!cunews!bnrgate!brchh104!brchs1!bnr.ca!rice.edu!sun-spots-request
From: uunet!st-andy!larry@uunet.uu.net (Larry Martell)
Newsgroups: comp.sys.sun
Subject: Re: Root password and single user boot
Keywords: Miscellaneous
Message-ID: <3791@brchh104.bnr.ca>
Date: 12 Jun 91 19:40:00 GMT
Sender: news@brchh104.bnr.ca
Organization: Sun-Spots
Lines: 21
Approved: Sun-Spots@rice.edu
X-Original-Date: Wed, 5 Jun 1991 18:19:50 GMT
X-Sun-Spots-Digest: Volume 10, Issue 106, message 11
X-Note: Submissions: sun-spots@rice.edu, Admin: sun-spots-request@rice.edu

In article <3120@brchh104.bnr.ca> btr!jbauman@decwrl.dec.com writes:
>Is there a way to prevent someone from stepping up to
>a workstation, giving the Sun 2 fingered salute (L1-A), booting single
>user, modifying the password file (i.e. removing a root password),
>then coming back on the net to pursue "other activities"? Surely there
>must be a mechanism to ask for the root password even after booting single
>user.....
>

From the ttytab(5) man page:

If  the  console  is not marked "secure," the system
prompts for the root password before coming  up  in  single-
user  mode.

So, in your ttytab file remove the word secure from the console line.

Larry Martell                  "Opinions are like assholes; everybody has one, 
212-668-9478		        but nobody wants to look at the other guys"
uunet!st-andy!larry