Comments on: A Discussion on Grub Security

By: Bob

Bob — Mon, 04 May 2009 00:22:24 +0000

Boot from an ubuntu live CD and changet it back

By: abhi

abhi — Wed, 27 Feb 2008 14:40:21 +0000

I have just bought a Dell XPS ubuntu laptop. By this grave error I have forgotten my username and password.
I am totally new to Ubuntu.
How do I recover it or reset it?

By: Kevin Mark

Kevin Mark — Sat, 23 Jun 2007 02:33:16 +0000

as directhex wrote above, (debian and) ubuntu define runlevels 2-5 the same and default to runlevel 2. Some have asked that we comply with the Redhat-like standard, but alas it has been changed.

By: Pierce Lopez

Pierce Lopez — Fri, 22 Jun 2007 15:49:51 +0000

And then, you’d need to lock your computer in a cabinet so one can’t remove the bios memory battery or use a simple jumper to reset it… Basically, if someone has physical access to your computer, it’s been compromised(unless you have a really, really good and inconvenient full drive encryption scheme).

By: Malcolm Parsons

Malcolm Parsons — Fri, 22 Jun 2007 15:10:09 +0000

In most other distributions, single user mode does ask for the root password.

Ubuntu doesn’t have a root password, so it cannot ask for it.

There is no point in securing grub without also setting a BIOS password, or I can get a root shell by inserting a boot floppy / cd / usb flash drive.

By: Liam Bedford

Liam Bedford — Fri, 22 Jun 2007 15:06:35 +0000

Ubuntu boots to sulogin by default, which means if there is a root password set, it will ask for it.

You can even bypass that by appending
“init=/bin/sh” to the bootloader, and then it doesn’t matter what security you put on your machine, apart from drive encryption.

By: directhex

directhex — Fri, 22 Jun 2007 14:54:46 +0000

Ubuntu uses runlevel 2 as default, not 5.