Tiny Core Linux

General TC => General TC Talk => Topic started by: as on October 05, 2015, 12:46:05 PM

Title: What would I delete to make sure no-one could log in?
Post by: as on October 05, 2015, 12:46:05 PM
I'd like to make a system impossible to log in to, ideally via deleting code that permits login, rather than configuring it off.

What would I need to delete to make login impossible?
Title: Re: What would I delete to make sure no-one could log in?
Post by: Zendrael on October 05, 2015, 01:13:39 PM
You mean no-one like neither you or just you and anyone else?
Title: Re: What would I delete to make sure no-one could log in?
Post by: curaga on October 05, 2015, 01:23:01 PM
- use the bootcode noautologin, so root doesn't login automatically
- give root and tc passwords, then forget said passwords

Alternatively, configure /etc/inittab in such a way it doesn't launch any consoles in your remaster.
Title: Re: What would I delete to make sure no-one could log in?
Post by: as on October 05, 2015, 02:09:37 PM
Ideally I'd like to make it impossible for anyone ever to log in.

I'd like to do this in the most brutal and irrevocable way, so I'd prefer to delete the code that enables login rather than just configure login to be switched off.

The idea is to make it impossible to login in even if for some reason a hacker gets the ability to change configuration settings, enabling login.

I do bear in mind of course that this would not make a system unhackable but I'm wanting to make it as hard as possible. Without any login code present on the system there becomes one more barrier to an intruder gaining entry.
Title: Re: What would I delete to make sure no-one could log in?
Post by: gerald_clark on October 05, 2015, 02:35:34 PM
That would make the system unmaintainable.
How do you intend to configure/install/maintain this system?
Also, it is  nearly impossible to keep someone out who has physical access to the system.
Title: Re: What would I delete to make sure no-one could log in?
Post by: as on October 05, 2015, 03:38:06 PM
>>That would make the system unmaintainable.
Yep, I'm good with that. I'm not wanting the system to ever be touched once its booted up.

>>How do you intend to configure/install/maintain this system?
It should still be able to boot up and get started, just without interactive command line activity from any logged in users.  init scripts only to get it started.

>>Also, it is  nearly impossible to keep someone out who has physical access to the system.
Yes not much I can do about that.

Title: Re: What would I delete to make sure no-one could log in?
Post by: hiro on October 06, 2015, 01:25:36 AM
desolder the console and any I/O like PCI and memory, store tinycorelinux in L2 cache on the CPU.
Title: Re: What would I delete to make sure no-one could log in?
Post by: curaga on October 06, 2015, 01:27:01 AM
Well, you could rebuild busybox without a shell, and rewrite the init scripts in C. Without a shell, nobody can do anything useful.
Title: Re: What would I delete to make sure no-one could log in?
Post by: Zendrael on October 09, 2015, 09:25:35 AM
Ok, but... why do you want to do this?
Title: Re: What would I delete to make sure no-one could log in?
Post by: mocore on October 09, 2015, 12:04:56 PM
Ok, but... why do you want to do this?
i-think that this post explains that http://forum.tinycorelinux.net/index.php/topic,18937.msg116193.html#msg116193