help-grub
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: personal script

From: Leslie S Satenstein
Subject: Re: personal script
Date: Wed, 9 Jan 2013 17:57:10 -0800 (PST)
One way to learn grub is to debug problems.
Grub2 is pretty clean, particularly the version with the new Fedora 18

sudo  grub2-mkconfig >/tmp/grub.cfg    is what I run
I then study /tmp/grub.cfg and while the rule is to not make changes, (since a kernel upgrade will cause a new version to be written), I do remove groups of menu items and
I change default from '0' to the linux of choice (my system has 4 different distributions)

When I am happy with my tinkering of my /tmp/grub.cfg, 
I do a sudo su
I cp /boot/grub2/grub.cfg   /boot/grub2/grub.bak       # always have a backup

I then cp  /tmp/grub.cfg /boot/grub2/

 

 
Regards

 Leslie
Mr. Leslie Satenstein
50 years in Information Technology and going strong.
Yesterday was a good day, today is a better day,
and tomorrow will be even better.
 
SENT FROM MY OPEN SOURCE FEDORA LINUX SYSTEM.

mailto:address@hidden
alternative: address@hidden
www.itbms.biz  www.eclipseguard.com


--- On Wed, 1/9/13, Jordan Uggla <address@hidden> wrote:

From: Jordan Uggla <address@hidden>
Subject: Re: personal script
To: "Filippo Galante" <address@hidden>
Cc: "help-grub" <address@hidden>
Date: Wednesday, January 9, 2013, 5:38 PM

Please keep help-grub CCd.

On Wed, Jan 9, 2013 at 2:23 PM, Filippo Galante
<address@hidden> wrote:
> Well mostly security... and also because i don't like very much the Grub2 menu...

This scheme doesn't increase security. If you want security you might
add a grub password,
http://www.gnu.org/software/grub/manual/grub.html#Security but also
keep in mind the comment made in that documentation:

By default, the boot loader interface is accessible to anyone with
physical access to the console: anyone can select and edit any menu
entry, and anyone can get direct access to a GRUB shell prompt. For
most systems, this is reasonable since anyone with direct physical
access has a variety of other ways to gain full access, and requiring
authentication at the boot loader level would only serve to make it
difficult to recover broken systems.

If this isn't a physically locked down kiosk then adding any type of
obstacle to the bootloader won't prevent an intruder from booting from
other media, replacing the hard drive, adding a hardware keylogger, or
any multitude of other options available to someone with physical
access to the machine.

--
Jordan Uggla (Jordan_U on irc.freenode.net)

_______________________________________________
Help-grub mailing list
address@hidden
https://lists.gnu.org/mailman/listinfo/help-grub
reply via email to
[Prev in Thread] Current Thread [Next in Thread]