[syslinux] "NOESCAPE 1" is easily escapable
Alexander Heinz
mailsanmich at gmx.li
Tue Aug 16 11:20:53 PDT 2005
> At present the NOESCAPE keyword seems rather useless, because a boot
> prompt is offered whenever attempts to load a boot image is interrupted
> using <Ctrl>C. Intuitively, I would expect "NOESCAPE 1" to lock this
> down also, and that {sys,pxe,iso.ext}linux would simply fall through to
> the impicit or explicit ONERROR behaviour. It doesn't.
>
> This is particularly a problem for those using the password protection
> features of menu.c32, because access to a boot prompt will completely
> subvert this protection. For example, if I have a standard boot image
> and a password-protected privileged boot image, I can start booting the
> standard image, interrupt the boot, and then enter the name of the
> privileged image to boot it *without entering the password*.
I just want to confirm the problem. I hope that Peter finds the time to
fix this.
Alex
More information about the Syslinux
mailing list