Hi all.
I hope someone can help me.
I would like to prevent that a person with physical access to the flash drive resets the password and gain access as root.
I read the New User Basic blog #1. It states that to reset your root password do the following:
- Shutdown your server.
- Plug your USB flash into a laptop or another computer.
- Open the USB folder and delete the files "config/shadow" and "config/smbpasswd" (do not delete "config/passwd). This will reset all user passwords, including the root user, to none, ie blank.
- Now eject your USB and reboot it on your NAS server and you’re in. You can then set a new password in the Users tab of the Unraid webgui.
Source: https://unraid.net/blog/unraid-new-users-blog-series
I've searched the forums and found this previous thread:
The user "JonathanM" mentions that some files could be moved to an encrypted volume.
Would that be possible with the files "config/shadow" and "config/smbpasswd" to prevent someone gaining root acces to the server?
Is there another way of achieving this? As I understand encryption of the flash drive is not a possibility though that is what i would like.
Thank you in advance.