Hide Forgot
RedHat Linux 6.0 allows to boot in single user mode (and become root) without asking for the root password.
and you can do the same thing with linux init=/bin/bash. Therefore, we won't change the 'linux single' behavior.
*** Bug 5287 has been marked as a duplicate of this bug. *** Are you aware that when the computer is sitting at the lilo: prompt and you type 'linux 1', when it boots to single user, you can use the passwd utility to change the root password without knowing the root password! I don't know if this is a bug or if this is supposed to be this way. It just seems like it is not real secure.
I don't understand why this is marked as resolved. This is a major security problem. On the Server this may not be an issue, but in a desktop environment if a user knows how to type : linux init=/bin/bash or some other command like that, this will allow them root or God access. Is there some way to prompt a user for root password every time they type something in, but if they use the menu option "tab" then no password is required ?