10 steps to Password Protect SUSE's Grub Bootloader
Applies to:
- SUSE Linux Professional 9.2-9.3
- SUSE Linux 10.0
- Novell Linux Desktop 9
- SUSE Linux Enterprise Server 9
Steps:
- Log into your box as root
- Open up a shell.
- At command prompt, become superuser, then type grub:
- At “grub>” prompt type md5crypt:
- Enter a password at the Password: prompt, preferably something other than root password:
- It will then give you the password encrypted
- Copy the encrypted password into the clipboard.
- Open up a new shell.
- At command prompt, become superuser, then type vi /boot/grub/menu.lst
- After you see title SUSE Linux 10.0 on the next line type lock. On the following line type password md5 [the encrypted password you copied from previous shell]:
-
linux:~ # su
Password:
linux:~ # grub
-
grub> md5crypt
-
Password: *****
-
Encrypted: $1$Rdv455345ga345GvIRgXWxcF1Vjb7tZ//
-
linux:~ # su
Password:
linux:~ # vi /boot/grub/menu.lst
###Don't change this comment YaST2 identifier: Original name: linux### title SUSE Linux 10.0 lock password md5 $1$Rdv455345ga345GvIRgXWxcF1Vjb7tZ// root (hd0,1) kernel /boot/vmlinuz root=/dev/hda2 vga=0x31a selinux=0 resume=/dev/hda1 splash=silent showopts initrd /boot/initrd
For even more protection you may set a BIOS password and disable all other boot options in the BIOS that are not needed.
No comments yet