Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

create crypt'd GRUB passwd?
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
scocou
Apprentice
Apprentice


Joined: 16 Aug 2002
Posts: 184
Location: Pacific NW, Canada
PostPosted: Sat Mar 15, 2003 4:16 am    Post subject: create crypt'd GRUB passwd? Reply with quote
http://www.gentoo.org/doc/en/gentoo-security.xml#doc_chap3 wrote:
Grub supports 2 different ways of adding password restriction to its configuration file (/boot/grub/menu.1st). One with plain text password and one with md5+salt encryption.

Code listing 3.2: /boot/grub/menu.lst
timeout 5
password changeme

This will add the password changeme and if no password is entered simply use the default boot setting. When adding a md5 password, you need to convert the password into crypt format (man crypt) which is the same format as the shadow file. For example could the encrypted password changeme look like this $1$T7/dgdIJ$dJM.n2wZ8RG.oEiIOwJUs.
Or this:

Code listing 3.3: /boot/grub/menu.lst
timeout 5
password --md5 $1$T7/dgdIJ$dJM.n2wZ8RG.oEiIOwJUs.
oK, I grok all that and have decided to use an encrypted passwd for GRUB. As suggested I man'd crypt and studied the contents, and experienced no obvious confustications ;) . Somehow I still don't understand how to make a md5+salt hash of my passwd as described in the example. Could someone describe (precisely) how to actually produce the sample given above, or generally how to
Quote:
convert the password into crypt format (man crypt) which is the same format as the shadow file
I feel this is a crucial bit of knowledge and am eager to get a handle on it, so thanks in advance :)
PS I know I could probably man grub and comb through it, but meh, what'r ya gonna do?
Back to top
View user's profile Send private message
alexod
n00b
n00b


Joined: 15 Mar 2003
Posts: 69
PostPosted: Sat Mar 15, 2003 9:55 am    Post subject: grub-md5-crypt Reply with quote
try /sbin/grub-md5-crypt
Back to top
View user's profile Send private message
scocou
Apprentice
Apprentice


Joined: 16 Aug 2002
Posts: 184
Location: Pacific NW, Canada
PostPosted: Sat Mar 15, 2003 8:14 pm    Post subject: Reply with quote
I couldn't have asked for a more concise answer ;) Thanks very much! Maybe this command should be mentioned in the doc I was reading (unless it is and I missed it)... EDIT: I really should have done 'info grub' as suggested in the doc, as I see it explained what to do clearly. Now I feel dumb :oops:
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy