Date: Sat, 7 Oct 2000 14:15:43 -0500 (CDT) From: Jason Haas <jhaas@linuxppc.com> To: lwn@lwn.net Subject: LinuxPPC Security Update: single user mode. We have added a security update regarding single user mode login. Currently, all past and present versions of LinuxPPC (going back to 1998's Release 4.0, and possibly earlier) have a vunlerability when booting in single user mode. When a machine is booted in single user mode, the computer automatically performs a root login. It does not ask for a password. We have provided an easy fix for this in our security update: <http://www.linuxppc.com/support/updates/security/?category=2000&subject=single-user-mode> This will be fixed in the next version of LinuxPPC, which is due very soon. Cheers, Jason Haas, jhaas@linuxppc.com LinuxPPC Inc, http://www.linuxppc.com