Re: Passwordless root access

CWO4 Dave Mann <misterfixit@xxxxxxxxxxxx> wrote:
: that eliminates the possibility of loading something from an external
: device. Second, don't build the box with capability for a user to shut the
: system down or even get out of the gui environment. Third, remove the

That would of course include removing any ability to cycle the
power.

: possibility of command line invoke of applications.

You forgot-- remove the ability to invoke applications from the network
via a browser. Or realistically- remove the ability to invoke
_any_ applications or any kind by any means other than the limited set
that you provide. Obviously this would mean no JAVA ability or the like.


: I do not know how difficult building that kind of box would be ... I think
: that it would be easier to build your own kernel with those security
: factors in place and then burn the OS to a ROM and embed the system in
: hardware.

Indeed. That's what embedded systems are all about. Throwing a general
purpose computer out in a kiosk or the like is NEVER going to be secure.
You need something with vastly more limited configurability/usability
and almost certainly no ability to boot from anything other than read-only
media.

And of course as everyone else has said-- forget about software
until you have physical security in place. Internet cafes with their
OTS PC's sitting there are not what one would call secure.

Stan

--
Stan Bischof ("stan" at the below domain)
www.worldbadminton.com
.

Relevant Pages

  • Re: Passwordless root access
    ... You forgot-- remove the ability to invoke applications from the network ... until you have physical security in place. ...
    (comp.os.linux.misc)
  • Moving legacy apps from VMS to OS-X
    ... Included in this was the ability to quickly build small database ... applications by simply creating a form (think Interface Builder for VT ... -Are there any open source GUI client frameworks to access MySQL on a Mac? ...
    (comp.sys.mac.programmer.help)
  • Application Developer 4918
    ... cost-effective solutions to complex business problems. ... Conduct front-line development of front and back-end applications including ... Design, develop, modify, and implement Software as a Service hosted ... Strong development skills with the ability to learn and adapt to many different languages ...
    (soc.culture.malaysia)
  • Re: Saving Form Size in Aceess 2007
    ... In many of these applications, ... I've only recently started taking advantage of Access 2007s ability to resize ... What I don't understand is the utility of the split form. ... The problem was in pre-2007 versions, a maximied form on larger screens ...
    (microsoft.public.access.forms)
  • Re: Is it worth taking SP2 yet - or wait?
    ... My experience didn't go so well with Microsoft, and the applications that didn't work with it were: ... Microsoft Office 2003 ... Word 2003 - new documents could not be registered; no ability to link documents; broken (ALL Office ... Windows Installer - could not install, re-install, repair or maintain any Office 2003 OR XP Home ...
    (microsoft.public.windowsxp.general)