Author Topic: What would I delete to make sure no-one could log in? (Read 3099 times)

as · « **on:** October 05, 2015, 03:46:05 PM »

I'd like to make a system impossible to log in to, ideally via deleting code that permits login, rather than configuring it off.

What would I need to delete to make login impossible?

Zendrael · « **Reply #1 on:** October 05, 2015, 04:13:39 PM »

You mean no-one like neither you or just you and anyone else?

curaga · « **Reply #2 on:** October 05, 2015, 04:23:01 PM »

- use the bootcode noautologin, so root doesn't login automatically
- give root and tc passwords, then forget said passwords

Alternatively, configure /etc/inittab in such a way it doesn't launch any consoles in your remaster.

as · « **Reply #3 on:** October 05, 2015, 05:09:37 PM »

Ideally I'd like to make it impossible for anyone ever to log in.

I'd like to do this in the most brutal and irrevocable way, so I'd prefer to delete the code that enables login rather than just configure login to be switched off.

The idea is to make it impossible to login in even if for some reason a hacker gets the ability to change configuration settings, enabling login.

I do bear in mind of course that this would not make a system unhackable but I'm wanting to make it as hard as possible. Without any login code present on the system there becomes one more barrier to an intruder gaining entry.

gerald_clark · « **Reply #4 on:** October 05, 2015, 05:35:34 PM »

That would make the system unmaintainable.
How do you intend to configure/install/maintain this system?
Also, it is nearly impossible to keep someone out who has physical access to the system.

as · « **Reply #5 on:** October 05, 2015, 06:38:06 PM »

>>That would make the system unmaintainable.
Yep, I'm good with that. I'm not wanting the system to ever be touched once its booted up.

>>How do you intend to configure/install/maintain this system?
It should still be able to boot up and get started, just without interactive command line activity from any logged in users. init scripts only to get it started.

>>Also, it is nearly impossible to keep someone out who has physical access to the system.
Yes not much I can do about that.

hiro · « **Reply #6 on:** October 06, 2015, 04:25:36 AM »

desolder the console and any I/O like PCI and memory, store tinycorelinux in L2 cache on the CPU.

curaga · « **Reply #7 on:** October 06, 2015, 04:27:01 AM »

Well, you could rebuild busybox without a shell, and rewrite the init scripts in C. Without a shell, nobody can do anything useful.

Zendrael · « **Reply #8 on:** October 09, 2015, 12:25:35 PM »

Ok, but... why do you want to do this?

mocore · « **Reply #9 on:** October 09, 2015, 03:04:56 PM »

Quote from: Zendrael on October 09, 2015, 12:25:35 PM

Ok, but... why do you want to do this?

i-think that this post explains that http://forum.tinycorelinux.net/index.php/topic,18937.msg116193.html#msg116193

Tiny Core Linux

News:

Author Topic: What would I delete to make sure no-one could log in? (Read 3099 times)

as

What would I delete to make sure no-one could log in?

Zendrael

Re: What would I delete to make sure no-one could log in?

curaga

Re: What would I delete to make sure no-one could log in?

as

Re: What would I delete to make sure no-one could log in?

gerald_clark

Re: What would I delete to make sure no-one could log in?

as

Re: What would I delete to make sure no-one could log in?

hiro

Re: What would I delete to make sure no-one could log in?

curaga

Re: What would I delete to make sure no-one could log in?

Zendrael

Re: What would I delete to make sure no-one could log in?

mocore

Re: What would I delete to make sure no-one could log in?