FWIW it is true that init=/bin/bash will bypass requiring a password for single user mode. However, in our configuration standards, we still require a password for single user mode. <br><br><div class="gmail_quote">2011/7/29 Marek Andreánsky <span dir="ltr">&lt;<a href="mailto:[log in to unmask]"><a href="/scripts/wa.exe?LOGON=A3%3Dind1107%26L%3DSCIENTIFIC-LINUX-DEVEL%26E%3Dquoted-printable%26P%3D319840%26B%3D--00163691ff5106c2a504a9350201%26T%3Dtext%252Fhtml%3B%2520charset%3DISO-8859-1%26pending%3D" target="_parent" >[log in to unmask]</a></a>&gt;</span><br>
<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">Why is securing /etc/inittab helping? I&#39;ve read that by adding init=/bin/bash to grub you can get into the machine and change the shadow file anyway, which gives you root. I&#39;d say that Red Hat presumes that the server is in a secure location and it is therefore highly improbable that anyone could just simply sit down to it and reboot it without anyone ever noticing.<div>



<br></div><div>Does it actually bring any substantial benefit to add this security feature, when an attacker can always gain root access if your physical location is compromised ?</div><div><br></div><div>Best regards,</div>



<div>Marek Andreansky<br><blockquote class="gmail_quote" style="margin: 0px 0px 0px 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">


<h3>SL_password_for_singleuser</h3>
<p>Changes /etc/inittab to require the root password for
single user mode.
<br>This package used to be called SL_inittab_change
</p>
<p>
Who Needs This
<br>In my opinion everyone, and we&#39;re quite surprised that Enterprise 
Linux isn&#39;t this way.  If you are concerned about someone getting root 
access to your computer by just sitting down to it, then this is 
something you will want to install. </p></blockquote></div>
</blockquote></div><br>