{"id":6424,"date":"2017-01-08T17:06:01","date_gmt":"2017-01-08T09:06:01","guid":{"rendered":"http:\/\/rmohan.com\/?p=6424"},"modified":"2017-01-08T17:06:01","modified_gmt":"2017-01-08T09:06:01","slug":"grub-password-solaris-11","status":"publish","type":"post","link":"https:\/\/mohan.sg\/?p=6424","title":{"rendered":"GRUB password solaris 11"},"content":{"rendered":"<h3 class=\"post-title entry-title\">GRUB password<\/h3>\n<div class=\"post-header\"><\/div>\n<div id=\"post-body-7180725586597529394\" class=\"post-body entry-content\">Nowadays I&#8217;d say it&#8217;s hard to believe that anything is really secure.<br \/>\nNevertheless one can keep going adding more and more barriers.<br \/>\nThe idea is not to be selected as an easier path to attack.<br \/>\nBut again, if someone is determined who can tell&#8230;<\/p>\n<p>Despite this gave introduction, my goal is to repeat one known tiny bit:<br \/>\nHelp preventing unauthorized GRUB configuration change by adding a password.<br \/>\nThe method below isn&#8217;t for GRUB2 (the next generation), but for the older version.<\/p>\n<p>Locate the grub menu file where to configure the password:<\/p>\n<p><b># bootadm list-menu<\/b><br \/>\nthe location\u00a0&#8230; is: \/rpool\/boot\/grub\/menu.lst<br \/>\ndefault 4<br \/>\ntimeout 15<br \/>\n&#8230;<\/p>\n<p>Invoke the grub binary\u00a0to create the password.<br \/>\nTake note of the resulting encrypyted hash.<\/p>\n<p><b># \/boot\/grub\/bin\/grub<\/b><\/p>\n<p>GNU GRUB\u00a0 version 0.97\u00a0 (640K lower \/ 65536K upper memory)<br \/>\n[\u00a0&#8230;<br \/>\n&#8230;<br \/>\n&#8230; ]<\/p>\n<p>grub&gt; <b>md5crypt<\/b><\/p>\n<p>Password: <b>***************<\/b><br \/>\nEncrypted: $1$&#8230;<\/p>\n<p>grub&gt; <b>quit<\/b><\/p>\n<p>Edit the grub menu file and include the generated password hash as shown below:<\/p>\n<p><b># head -7 \/rpool\/boot\/grub\/menu.lst<\/b><br \/>\nsplashimage \/boot\/grub\/splash.xpm.gz<br \/>\nforeground 343434<br \/>\nbackground F7FbFF<br \/>\ndefault 4<br \/>\ntimeout 15<br \/>\npassword &#8211;md5 $1$&#8230;<br \/>\n#&#8212;&#8212;&#8212;- ADDED BY BOOTADM &#8211; DO NOT EDIT &#8212;&#8212;&#8212;-<br \/>\n&#8230;<\/p>\n<p>That&#8217;s all what&#8217;s need for GRUB1.<br \/>\nFor GRUB2 I&#8217;m still trying to learn how to do it.<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>GRUB password Nowadays I&#8217;d say it&#8217;s hard to believe that anything is really secure. Nevertheless one can keep going adding more and more barriers. The idea is not to be selected as an easier path to attack. But again, if someone is determined who can tell&#8230;<\/p>\n<p>Despite this gave introduction, my goal is to repeat [&#8230;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[39],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6424"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6424"}],"version-history":[{"count":1,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6424\/revisions"}],"predecessor-version":[{"id":6425,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6424\/revisions\/6425"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6424"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6424"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6424"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}