这是一个创建于 3255 天前的主题,其中的信息可能已经有所发展或是发生改变。
http://www.engadget.com/2015/12/18/log-into-most-any-linux-system-by-hitting-backspace-28-times/
> doing so (pressing backspace for 28 times in a row) for builds utilizing the ubiquitous Grub2 bootloader -- that's to say just about all of them -- immediately bypasses the lock screen, initiates the "Grub rescue shell" and grants the user access to the system for whatever nefarious things they have in mind.
笑出声 hhhhhh
> doing so (pressing backspace for 28 times in a row) for builds utilizing the ubiquitous Grub2 bootloader -- that's to say just about all of them -- immediately bypasses the lock screen, initiates the "Grub rescue shell" and grants the user access to the system for whatever nefarious things they have in mind.
笑出声 hhhhhh
 |
1
wm5d8b 2015-12-20 08:27:49 +08:00 via Android
然而我的 grub2 并不需要输密码
|
 |
2
binux 2015-12-20 08:32:27 +08:00
> Here's another ludicrously simple way to log in to a Linux system. Boot into grub, press "e" to edit, add "single" on the kernel command line, and press "b" to boot.
> Your grub has a lock screen? Here's how to bypass it. Remove the hard drive and move the drive to another system that doesn't have a lock screen. > In other words, this story is stupid. There's a dozen other ways to hack a Linux system if you have direct access to the machine hardware. 笑大声 |
 |
3
rainy3636 2015-12-20 08:49:22 +08:00 via Android
吃 鲸
|
 |
4
nareix 2015-12-20 08:54:03 +08:00
没见过谁用 grub 加密码的。不过这个漏洞还是蛮搞笑的。
|
 |
5
ryd994 2015-12-20 09:04:24 +08:00
能不标题党么。昨天就看到了,对绝大多数用户来说根本无关紧要。更何况这属于 grub 的漏洞。
|
 |
6
xcodebuild 2015-12-20 09:12:52 +08:00
少年你的标题有做记者的潜质
|
 |
7
20015jjw OP |
 |
10
hao360 2015-12-20 10:22:55 +08:00
360 最先发布 Linux 退格漏洞
|
 |
12
est 2015-12-20 11:13:03 +08:00
我的密码是 30 个退格加 5 个回车。来破解吧。
|
 |
13
loading 2015-12-20 11:22:52 +08:00
能摸到机器了,还有什么好说的。
|
 |
14
Ansen 2015-12-20 13:33:13 +08:00 via iPhone
这是有多无聊
|
|
15
Ansen 2015-12-20 13:33:37 +08:00 via iPhone
直接 single 改密码得了
|
 |
16
lyz1990 2015-12-20 13:37:02 +08:00  1
物理安全都没有了,再多安全机制也是白搭啊!
|
 |
17
otakustay 2015-12-20 19:19:38 +08:00
@lyz1990 也不能这么说,看看 Android 和 iOS 这几年解决丢失后数据安全问题做了多少努力, Linux 虽然以桌面为主但不妨也吸收一下这些经验
|
 |
18
mingl0280 2015-12-22 01:14:17 +08:00
这漏洞纯属有病…… grub 有几个加密码的,按 E 直接在后面加个 single 连 root 都能拿到……
|
Select Language