Launch a bash script when enterring password to log in?

Question

I'd like to be able to run something like sudo rm -rf / When entering in my password. Just in case I ever need to wipe everything at once before I even login.

I know there are security concerns, so in a perfect world, I'd like to be able to set it up in .bashrc so I would type in something less obvious.

Anyone know of a way to do this?

What? Running sudo rm -rf / would clear your installation (and all files on any mounted device). Luckily they prevented it to be run. — kos, Jul 20 '15 at 15:51
Something less obvious ? Alias this command like alias notwhatyouthink='sudo rm -rf /' in .bashrc and if you ever need it , run notwhatyouthink command — Sergiy Kolodyazhnyy, Jul 20 '15 at 15:51
You do realize that rm -rf / destroys the whole system , right ? — Sergiy Kolodyazhnyy, Jul 20 '15 at 15:54
@Serg actually, rm -rf / does nothing but print an error message. This is defined by the current POSIX specs. — terdon, Jul 20 '15 at 16:13
As it looks like you're concerned about security, you should notice, that simply deleting everything doesn't help much (deleted files can be recovered). You should rather wipe/shred that data with e.g. sudo shred -n1 /dev/sda. Or encrypt the whole system. — Germar, Jul 20 '15 at 17:10

terdon · Answer 1 · 2015-07-20T17:52:58.923

I would suggest a slightly different approach. Create a new user, let's call him "harakiri" and set it up so that when you log in as harakiri, a command is executed that deletes everything on your hard drive.

Create the new user
```
sudo adduser harakiri
```
Create a harakiri script that deletes everything on your drive:
```
echo "rm -rf --no-preserve-root /" | sudo tee /usr/bin/harakiri
sudo chmod a+x /usr/bin/harakiri
```
We now have the harakiri command which, when run as root, will delete everything on your /.
Add a line to their .profile that will make them run the harakiri script.
```
echo "sudo harakiri" | sudo tee ~harakiri/.profile
```
Add them to the sudoers group
```
sudo usermod -aG sudo harakiri 
```
Allow user harakiri to run sudo harakiri with no password. Run sudo visudo and add this line:
```
harakiri  ALL=NOPASSWD:/usr/bin/harakiri
```

Exit and save the file and that's it. Now, you can just log in as harakiri instead of your normal user and that will delete everything on your drive.

CAVEATS

This is extremely dangerous and can delete everything on your hard drive. Try with a less destructive command first to make sure everything is working as expected.
Even if you delete everything, it is relatively easy for an expert to retrieve your files. You might want to look into utilities like shred.

I like this answer more than the other =) You have my +1 for this funny thing… :) — A.B., Jul 20 '15 at 18:12

score 6 · Answer 2 · answered Jul 20 '15 at 17:09

If you really need to have this happen when you log in as your regular user, you could also create a bogus X session that runs the rm command.

Create the .desktop file. Run sudo nano /usr/share/xsessions/harakiri.desktop and add these lines:

[Desktop Entry]
Name=Harakiri
Comment=This session will destroy everything
Exec=harakiri
Icon=
Type=Application

The rm command needs to be launched as root in order to delete files on / but the sessions are launched as your user. We therefore need an extra script. The first is the session script which in turn will call the one that launched the rm command:
```
echo "sudo /usr/bin/harakiri.sh" | sudo tee /usr/bin/harakiri
sudo chmod a+x /usr/bin/harakiri
```

Create the script that will launch the rm command:

echo "rm -rf --no-preserve-root /" | sudo tee /usr/bin/harakiri.sh
sudo chmod a+x /usr/bin/harakiri.sh

Give your user the right to run it with no password. Run sudo visudo and add this line:
```
youruser  ALL=NOPASSWD:/usr/bin/harakiri.sh
```

Now you will be able to choose the harakiri session from the login screen and that will delete everything on your drive.

CAVEATS

This is extremely dangerous and can delete everything on your hard drive. Try with a less destructive command first to make sure everything is working as expected.
Even if you delete everything, it is relatively easy for an expert to retrieve your files. You might want to look into utilities like shred.

sudo rm -rf --no-preserve-root / will not clear your system. It will delete files until /bin/rm stops working. ldd /bin/rm shows some of these files. System suicide is hard! (Boot from elsewhere and murder is easier, but not the answer). Why not use an encrypted directory? — waltinator, Jul 20 '15 at 18:54
@waltinator Binaries and dynamic libraries are loaded in memory at load time, so the rm process you started can (and will) run pretty much to completion. You won't be able to start another one when the first one deletes its own binary, but the first one will certainly keep running unimpeded and clear out most of your filesystem. In any case, needless to say you will not be rebooting successfully after rm is finished with your filesystem. — Thomas, Jul 21 '15 at 06:47

score 1 · Answer 3 · edited Apr 13 '17 at 12:24

1

First of all: what you want to do is not impossible, but more difficult then you think, as you need to:

Boot into a root shell
Execute a delete command (and rm --recursive --force / will not work)

If you try it out, you'll just get:
```
rm --recursive --force /
rm: it is dangerous to operate recursively on ‘/’
```

So the better option would be to:

How can I securely erase a hard drive?

Or even better:

Enable disk encryption after installation so that no one has access in the first place.

Another piece of free advice: start making back-ups before you even try any of the above.

edited Apr 13 '17 at 12:24

Community

1

answered Jul 20 '15 at 22:21

Fabby

34,259

I don't know what the user is really trying to do, but the latest versions of GNU rm have the --no-preserve-root which should allow you to operate (even using --recursive on /) – kos Jul 21 '15 at 01:40
@kos: Yes, I know.... Try it out and you'll understand! – Fabby Jul 21 '15 at 07:55

Launch a bash script when enterring password to log in?

3 Answers3

CAVEATS

CAVEATS