介紹一種Linux啟動引導加密
Linux啟動引導加密是提高Linux安全性的一種措施,這里以RedHat Linux為例來進行Linux啟動引導加密的設置,實驗是提高我們技術的一種手段,我們一定要親手試一試這種方法,完成技術的學習。
讓linux啟動引導加密方法
#vi /boot/grub/grub.conf
# grub.conf generated by anaconda
#
# Note that you do not have to rerun grub after making changes to this file
# NOTICE: You have a /boot partition. This means that
# all kernel and initrd paths are relative to /boot/, eg.
# root (hd0,0)
# kernel /vmlinuz-version ro root=/dev/sda2
# initrd /initrd-version.img
#boot=/dev/sda
default=0
timeout=10
splashimage=(hd0,0)/grub/splash.xpm.gz
title Red Hat Linux (2.4.18-3)
password 12345678
root (hd0,0)
kernel /vmlinuz-2.4.18-3 ro root=/dev/sda2
initrd /initrd-2.4.18-3.img
~
~
"/boot/grub/grub.conf" 17L, 569C written
[root@localhost root]# reboot
現以上提示輸入:12345678
系統才可以引導
注意:遠程勿試!
以密文方式
[root@localhost root]# grub-md5-crypt
Password:
$1$jQORq$BbVuVrnQ60b87FlXP/aau/
[root@localhost root]# vi /boot/grub/grub.conf
# grub.conf generated by anaconda
#
# Note that you do not have to rerun grub after making changes to this file
# NOTICE: You have a /boot partition. This means that
# all kernel and initrd paths are relative to /boot/, eg.
# root (hd0,0)
# kernel /vmlinuz-version ro root=/dev/sda2
# initrd /initrd-version.img
#boot=/dev/sda
default=0
timeout=10
splashimage=(hd0,0)/grub/splash.xpm.gz
title Red Hat Linux (2.4.18-3)
password --md5 $1$jQORq$BbVuVrnQ60b87FlXP/aau/
root (hd0,0)
kernel /vmlinuz-2.4.18-3 ro root=/dev/sda2
initrd /initrd-2.4.18-3.img
~
~
"/boot/grub/grub.conf" 17L, 598C written
[root@localhost root]# reboot
這里就進行了Linux啟動引導加密的設置。
【編輯推薦】
