I'll leave the addition of the line, but there's just absolutely no

way I'm going to allow this to be set to secure.  People blow their
password files away all the time, and I am not at all keen to lose the
ability to get them recovered with the simple expedient of a single-user
boot.

diff --git a/etc/ttys b/etc/ttys
index 46d6c4f..d642da1 100644 (file)
--- a/etc/ttys
+++ b/etc/ttys
@@ -4,7 +4,7 @@
 # name getty                           type    status          comments
 #
 # This entry needed for asking password when init goes to single-user mode
 # name getty                           type    status          comments
 #
 # This entry needed for asking password when init goes to single-user mode

-console        none                            unknown off insecure
+console        none                            unknown off secure

 #
 ttyv0  "/usr/libexec/getty Pc"         cons25  on  secure
 # Virtual terminals
 #
 ttyv0  "/usr/libexec/getty Pc"         cons25  on  secure
 # Virtual terminals