LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 09-14-2011, 06:47 AM   #1
andyew
LQ Newbie
 
Registered: Sep 2011
Posts: 3

Rep: Reputation: Disabled
Lightbulb Purposely Delete /etc/shadow and /etc/passwd


Dear all,

If i delete /etc/shadow, /etc/shadow-, /etc/passwd and /etc/passwd-, is it possible to recover ???

The method below uses /etc/passwd to get back /etc/shadow:
http://www.cyberciti.biz/tips/recove...word-file.html

What if all these files and its backups (passwd-/shadow-) are all deleted ???

Regards,
Andy
 
Old 09-14-2011, 07:31 AM   #2
macemoneta
Senior Member
 
Registered: Jan 2005
Location: Manalapan, NJ
Distribution: Fedora x86 and x86_64, Debian PPC and ARM, Android
Posts: 4,593
Blog Entries: 2

Rep: Reputation: 332Reputation: 332Reputation: 332Reputation: 332
You restore from backup. If you don't have a backup (shame on you), you can re-install the base files from your distribution packages (using a liveCD/USB, for example), then add the additional user entries by looking at /home. You then re-add service entries by checking to see what services fail at boot. The packages for the service will have the details of the account, or you can reinstall those services that fail with your package manager.
 
1 members found this post helpful.
Old 09-15-2011, 01:53 AM   #3
andyew
LQ Newbie
 
Registered: Sep 2011
Posts: 3

Original Poster
Rep: Reputation: Disabled
Thanks for the information. Infact it's really easy to "recover" Linux and this leads to security problem...

Is there anyway to disable booting Live CD/USB permanently? I'm sure setting BIOS password is like not setting it, because it's much easier to reset (eg. jumper or battery will do)....

As for GRUB, i could set the timeout to 0 sec and the attacker can't really put in init=/bin/bash.

Thanks!
 
Old 09-15-2011, 04:37 AM   #4
macemoneta
Senior Member
 
Registered: Jan 2005
Location: Manalapan, NJ
Distribution: Fedora x86 and x86_64, Debian PPC and ARM, Android
Posts: 4,593
Blog Entries: 2

Rep: Reputation: 332Reputation: 332Reputation: 332Reputation: 332
There is no protection if physical access to the system is available, for any computing platform.

You can use whole-disk encryption, and under most circumstances that will be enough to deter a physical compromise.

Last edited by macemoneta; 09-15-2011 at 04:38 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
shadow and passwd idlehands Linux - Security 2 07-28-2010 03:04 PM
passwd shadow problem rblampain Linux - Distributions 2 10-04-2005 12:00 AM
Moving /etc/passwd and /etc/shadow john8675309 Linux - Software 1 01-24-2005 08:44 PM
mismatch with /etc/passwd and /etc/shadow AngryKeebler Linux - General 1 07-23-2004 03:42 PM
/etc/passwd or /etc/shadow? tiger7007 Linux - Security 2 03-21-2004 04:41 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 02:24 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration