Yadda ake Kare GRUB tare da Kalmar wucewa a cikin RHEL/CentOS/Fedora Linux


GRand Unified Bootloader (GRUB) shine tsoffin bootloader a duk tsarin aiki irin na Unix. Kamar yadda aka alkawarta a kasidarmu ta baya "Yadda ake sake saita kalmar sirri da aka manta da ita", anan zamuyi bitar yadda za'a kare GRUB da kalmar wucewa. Kamar yadda aka ambata a baya post, kowa na iya shiga cikin yanayin mai amfani ɗaya kuma yana iya canza saitin tsarin kamar yadda ake buƙata. Wannan shine babban kwararar tsaro. Don haka, don hana irin wannan mara izini don samun damar tsarin muna iya buƙatar yin ɓata rai tare da kiyaye kalmar sirri.

Anan, zamu ga yadda za a hana mai amfani shiga cikin yanayin mai amfani guda ɗaya da canza saitunan tsarin waɗanda zasu iya samun damar kai tsaye ko kuma isa ga tsarin.

Hankali: Muna roƙon ɗaukar bayananku kuma gwada shi da kanku.

Yadda ake kalmar sirri Kare GRUB

Mataki na 1: Createirƙiri kalmar sirri don GRUB, ku zama tushen mai amfani da buɗe umarnin da sauri, buga ƙasa umarnin. Lokacin da aka sa irin nau'in kalmar wucewa sau biyu kuma latsa shiga. Wannan zai dawo da kalmar wucewa ta MD5. Da fatan za a kwafa ko a lura da shi ƙasa.

  grub-md5-crypt
 grub-md5-crypt
Password: 
Retype password: 
$1$19oD/1$NklcucLPshZVoo5LvUYEp1

Mataki 2: Yanzu kuna buƙatar buɗe fayil ɗin /boot/grub/menu.lst ko /boot/grub/grub.conf kuma ƙara kalmar sirri ta MD5. Duk fayilolin guda ɗaya ne kuma alamar alama ce ga juna.

 vi /boot/grub/menu.lst

OR

 vi /boot/grub/grub.conf

Lura: Ina baku shawara da ku dauki fayilolin ajiyar kafin yin canje-canje a gare shi, idan wani abu ya faru ba daidai ba zaku iya mayar da shi.

Mataki na 3: Addara sabuwar kalmar MD5 da aka kirkira a cikin fayil ɗin tsarin GRUB. Da fatan za a liƙa kwafin kalmar sirri da ke ƙasa layin lokacin aiki kuma adana shi kuma fita. Misali, Shigar da kalmar wucewa ta layin –md5 a sama.

# grub.conf generated by anaconda
#
# Note that you do not have to rerun grub after making changes to this file
# NOTICE:  You have a /boot partition.  This means that
#          all kernel and initrd paths are relative to /boot/, eg.
#          root (hd0,0)
#          kernel /vmlinuz-version ro root=/dev/sda3
#          initrd /initrd-[generic-]version.img
#boot=/dev/sda
default=0
timeout=5
password --md5 $1$TNUb/1$TwroGJn4eCd4xsYeGiBYq.
splashimage=(hd0,0)/grub/splash.xpm.gz
hiddenmenu
title CentOS (2.6.32-279.5.2.el6.i686)
        root (hd0,0)
        kernel /vmlinuz-2.6.32-279.5.2.el6.i686 ro root=UUID=d06b9517-8bb3-44db-b8c5-7710e183edb7 rd_NO_LUKS rd_NO_LVM rd_NO_MD rd_NO_DM LANG=en_US.UTF-8 SYSFONT=latarcyrheb-sun16 KEYBOARDTYPE=pc KEYTABLE=us crashkernel=auto rhgb quiet
        initrd /initramfs-2.6.32-279.5.2.el6.i686.img
title centos (2.6.32-71.el6.i686)
        root (hd0,0)
        kernel /vmlinuz-2.6.32-71.el6.i686 ro root=UUID=d06b9517-8bb3-44db-b8c5-7710e183edb7 rd_NO_LUKS rd_NO_LVM rd_NO_MD rd_NO_DM LANG=en_US.UTF-8 SYSFONT=latarcyrheb-sun16 KEYBOARDTYPE=pc KEYTABLE=us crashkernel=auto rhgb quiet
        initrd /initramfs-2.6.32-71.el6.i686.img

Mataki na 4: Sake yi tsarin kuma gwada shi danna 'p' don shigar da kalmar sirri don buɗewa da kunna fasali na gaba.

Wannan shine yadda zamu iya kare GRUB tare da kalmar wucewa. Bari mu san yaya kake kiyaye tsarinka? ta hanyar tsokaci.

Da fatan za a ziyarci shafukan yanar gizo na kan layi na tsaro don ƙarin bayani a Tsaron GRUB.