Yadda ake Kare Kalmar wucewa ta Yanayin Mai amfani guda ɗaya a cikin CentOS 7

A cikin ɗaya daga cikin labaranmu na farko, mun bayyana yadda ake yin booting zuwa yanayin mai amfani guda ɗaya akan CentOS 7. Ana kuma san shi da Yanayin kulawa, inda Linux kawai ke fara ɗimbin ayyuka don ayyuka na asali don ba da damar mai amfani guda ɗaya (yawanci a superuser) yin wasu ayyuka na gudanarwa kamar amfani da fsck don gyara ɓarna tsarin fayil.

A cikin yanayin mai amfani guda ɗaya, tsarin yana aiwatar da harsashi mai amfani guda ɗaya inda zaku iya gudanar da umarni ba tare da wani shaidar shiga (sunan mai amfani da kalmar sirri ba), kuna ƙasa kai tsaye a cikin ƙayyadadden harsashi tare da samun dama ga tsarin fayil gabaɗaya.

Wannan babban rami ne na tsaro tunda yana ba masu kutse damar kai tsaye zuwa harsashi (da yuwuwar isa ga dukkan tsarin fayil). Don haka, yana da mahimmanci kalmar sirri ta kare yanayin mai amfani guda ɗaya akan CentOS 7 kamar yadda aka bayyana a ƙasa.

A cikin CentOS/RHEL 7, maƙasudin ceto da gaggawa (waɗanda kuma yanayin mai amfani ɗaya ne) kalmar sirri ce ta tsohuwa.

Misali lokacin da kake ƙoƙarin canza manufa (runlevel) ta hanyar systemd to save.target (kuma emergency.target), za a nemi tushen kalmar sirri kamar yadda aka nuna a hoton da ke biyo baya.

# systemctl isolate rescue.target
OR
# systemctl isolate emergency.target

Koyaya, idan mai kutse yana da damar shiga uwar garken ta zahiri, shi ko ita za su iya zaɓar kernel don taya daga abin menu na grub ta latsa maɓallin e don shirya zaɓin taya na farko.

A kan layin kernel da ke farawa da \linux16\, shi/ta na iya canza hujjar ro zuwa \rw init=/sysroot/bin/ sh” kuma a yi booting zuwa yanayin mai amfani guda ɗaya akan CentOS 7 ba tare da tsarin yana neman tushen kalmar sirri ba, koda an canza layin SINGLE=/sbin/sushell zuwa SINGLE=/ sbin/sulogina cikin fayil /etc/sysconfig/init.

Don haka, hanya ɗaya tilo ta kalmar sirri ta kare yanayin mai amfani guda ɗaya a cikin CentOS 7 shine don kare GRUB da kalmar sirri ta amfani da waɗannan umarni masu zuwa.

Yadda ake Kare Kalmar wucewa a cikin CentOS 7

Da farko ƙirƙirar kalmar sirri mai ƙarfi ta amfani da grub2-setpassword utility kamar yadda aka nuna.

# grub2-setpassword

Ana adana Hash don kalmar sirri a cikin /boot/grub2/user.cfg & mai amfani watau tushen an bayyana shi a cikin /boot/grub2/grub.cfg fayil, zaka iya duba kalmar sirri ta amfani da umarnin cat kamar yadda aka nuna.

# cat /boot/grub2/user.cfg

Yanzu buɗe fayil /boot/grub2/grub.cfg kuma bincika shigarwar boot ɗin da kuke son kare kalmar sirri, yana farawa da menuentry. Da zarar an samu shigarwar, cire ma'aunin --unretricted daga cikinsa.

Ajiye fayil ɗin kuma rufe, yanzu gwada sake kunna tsarin CentOS 7 kuma gyara abubuwan shigar da boot ta latsa maɓallin e, za a umarce ku da ku samar da takaddun shaida kamar yadda aka nuna.

Shi ke nan. Kun sami nasarar kare kalmar sirri ta menu na CentOS 7 GRUB.