LINUX security-full solution to GRUB encryption graphic tutorial

GRUB encryption is a common task in LINUX. But today I checked this on the internet and found that many people wrote it very easily, and the methods were outdated. Therefore, here I update GRUB encryption. Share with you. GRUB is to configure the/boot/grub. conf file. First, let's talk about the benefits of GRUB encryption. 1. People who do not know the password cannot start the system. 2. prevent others from modifying startup parameters. ######################################## ############################# GRUB encryption is classified into two types. 1. Global encryption 2. Local encryption global encryption: function: Lock the startup interface, disable e to edit the commands before booting a to modify the kernel arguments before bootingc for a command-line. the main function of global encryption is edit the commands, because this superscript will see a local password. Then let's take a look at the effect of the global password. He needs you to press P and enter the global password to edit and view commands. This will protect our local password. If you do not enter a global password, you can press enter to start the system. If you still have a local password, you need to enter a local password. Local encryption: controls the data over a specific supersystem. Function: You must enter a password to access the system.. Let's take a look at how to implement these functions. ######################################## ########################## Select local encryption: because each system is marked by the title, we add the corresponding statement after the mark for partial encryption. Encryption is divided into two types: 1. plaintext 2. MD5 encryption. How is the MD5 encryption generated? Run the following command to copy the MD5 value of the password you entered to/boot/grub. grub. conf. Then save and launch. You need to enter the password to enter the system after the new startup. However, you can use the e key to edit the password in command mode on the startup screen. How can we prevent such incidents from happening? Therefore, global encryption is required to prevent others from having the edit permission. Global encryption: an MD5 password. Then enter/boot/grub. conf and add our password before the first title mark. The timeout5 is followed by our global encryption. In this way, others need a global password to view the local password. GRUB encryption is basically like this, and you need to use it flexibly.

1. Cloud Security 2.0: How ant financial defeated elephants
2. US network security is insufficient. The authority and responsibility are unknown.
3. US National network security and communication integrated center was established
4. Frequent accidents to be improved China's network security situation is grim