Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== 1.4.3 Ensure authentication required for single user mode (Scored) ====== =====Profile Applicability===== <code> Level 1 - Server Level 1 - Workstation </code> =====Description===== Single user mode is used for recovery when the system detects an issue during boot or by manual selection from the bootloader. =====Rationale===== Requiring authentication in single user mode prevents an unauthorized user from rebooting the system into single user to gain root privileges without credentials. =====Audit===== Perform the following to determine if a password is set for the ''root'' user: <Code:bash> # grep ^root:[*\!]: /etc/shadow </Code> No results should be returned. =====Remediation===== Run the following command and follow the prompts to set a password for the ''root'' user: <Code:bash> # passwd root </Code> ubuntu1604/1/4/3.txt Last modified: 2017/05/02 15:47by Piotr Kłoczewski