LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   shadow file (https://www.linuxquestions.org/questions/linux-security-4/shadow-file-372757/)

os2 10-13-2005 04:24 PM
shadow file
 
hi

are there a way to get password with the shadow file?

thanks

anomie 10-13-2005 04:35 PM
Short answer: No. Hashes are one-way. They can not be reversed (in theory).

Long answer: You can run a dictionary attack / brute force attack against your own /etc/shadow file if you are really desparate.

Real answer: Explain your situation more. There are probably better ways to accomplish what you want.

tkedwards 10-13-2005 11:31 PM
If you just want to reset a password then just delete the password hash - leave it as nothing (ie. not space between the two colons).

Krugger 10-18-2005 03:20 PM
There is an exploit that will dump the contents of /etc/shadow so you can brute force the hash much better. This depends on the kernel version as it exploits the binfmt handler. However I can't post it here as it would violate forum rules. Besides isn't this like your assignment like you said in the other thread. That is also against forum rules. :)

We won't make your homework for you, google a bit.

tip: www.securityfocus.com

should have all you need to get your security homeworks done.


All times are GMT -5. The time now is 02:28 PM.