- disable booting from anything but the main HDD in BIOS
- Lock down the BIOS with a password
- Lock down the recovery entries in GRUB with a password
- padlock the chassis
Then you'll have effectively taken care of the LiveCD/USB issue for the casual troll. There aren't many people out there determined enough to troll to cut through a padlock and yank out the MB battery.
Alternately, lock the CPU in a ventilated cabinet. No media, no liveboot.
The bios is locked already, so it's not possible (afaik) to boot from a usb drive without this password.
Also, I will disable the recovery mode as soon as I can get to it.
What do you thing of this solution?
Last edited by van_Zeller; October 31st, 2011 at 02:58 PM.
If you want to restrict what apps can be used, sound like a good task for apparmor.
How vicious is this Troll cause he could take a hammer and
forkbombs removed - see forum announcement.
ATTENTION ALL USERS: Malicious Commands
... UbuntuForums has a strict zero-tolerance policy when it comes to posting dangerous commands ...
Forum Social IRC ChannelXubuntu IRC SupportXubuntu Support
Please do not PM me about Registration issues without having been asked to. I will tell you to post here