[lug] root password
Zan Lynx
zlynx at acm.org
Wed Aug 2 10:29:02 MDT 2006
Heh. Well, this can actually happen, you know. :)
I've forgotten the password I set before. It's especially easy if you
use sudo as Bear suggests, since you never really need the root
password. Except for when you do. :)
In order:
- Add "single" to the kernel command line. Doesn't work with all
distros.
- Add init=/bin/sh to the kernel command line. Then remount / as rw.
- Boot a rescue CD or floppy.
- Take the boot disk to a different Linux machine and mount and edit it
there.
In my opinion if someone is really looking for cracking advice and their
sysadmin left the server physically available, well, that sysadmin
deserves anything he gets for assuming ignorance on the part of
others. :)
On Wed, 2006-08-02 at 10:16 -0600, Bear Giles wrote:
> Gordon Golding wrote:
>
> >Somebody reset the root password on a shared machine and now can't remember what they set it to.
> >
> >What's the best way to fix?
> >
> >
> ROTFL! Such a transparent "social engineering" attempt to get us to
> tell you how to hack into the system!!!
>
> Seriously, if somebody still has root access my advice would be to set
> up 'sudo' for everyone authoritized to have root access. It's one of
> the few options since it makes it easy to lock out people with former
> root access, the "somebody reset the root password on a shared
> machine..." approach doesn't work well in practice.
>
> Bear
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
--
Zan Lynx <zlynx at acm.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 192 bytes
Desc: This is a digitally signed message part
URL: <http://lists.lug.boulder.co.us/pipermail/lug/attachments/20060802/c973cc4b/attachment.pgp>
More information about the LUG
mailing list