[KLUG Members] linux security

[Adam Tauno Williams]

> > > it is quite easy to break root password in Linux using GRUB boot loader. On
> > > the other hand breaking Administrator password in Windows 200x is very
> > > difficult. Does this mean Linux security is weak?
> > No, it means you forgot to lock the door to your server room.
> Exactly, there is no security on a machine when there is free physical
> access to the hardware.
> Or if you prefer a false sense of security, grub supports passwords on
> it's boot menu.  (or set the BIOS password)

Yep, that adds ~5 minutes to yank the cover and the requirement of a
paper clip to short out the BIOS batter pins.

> > BTW, I, as I'm sure many others here, can break the administrator
> > password in about 2 minutes on a Windows 2K box.
> Yes, there are Linux distros you can boot on Windoze box and reset the
> administrator password.  Again, physical access is required.

Austrami, my favorite.  Also includes memtest, Seagate disk diagnostics,
and a live-CD X-windows desktop.

Want to do something really nasty to windows....

dd if=/dev/zero of=/dev/sda bs=512  ( aka "Bye Bye" )

XPeee will never crash on you again.

> > This thread is better suited for the advocacy list. Replies there please.
> Opinions about vague topics like Linux/Windows security being strong or
> week definitely belong on the advocacy list.  I'm still being technical.