Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
07-07-2006, 07:56 AM
|
#1
|
LQ Newbie
Registered: Apr 2004
Posts: 16
Rep:
|
Forgotton root password
I have a Fedora Core 4 server and I connect to it via ssh. I have forgotton the root password and need to update some mail files. Is there any way I can get this password back? I know other passwords to limited users such as myself and usually just su as root afterwards. help please if possible...
|
|
|
07-07-2006, 08:21 AM
|
#2
|
LQ Guru
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870
|
Quote:
Originally Posted by chomps
I have a Fedora Core 4 server and I connect to it via ssh. I have forgotton the root password and need to update some mail files. Is there any way I can get this password back? I know other passwords to limited users such as myself and usually just su as root afterwards. help please if possible...
|
do you have physical access to the box?? if not, you're out of luck...
of course, without physical access, if you don't have the shadow suite installed on the box, you could still try and crack the root password with john the ripper or something... but the shadow suite is installed by default on almost all distros *precisely* for this reason...
Last edited by win32sux; 07-07-2006 at 08:26 AM.
|
|
|
07-07-2006, 08:21 AM
|
#3
|
Member
Registered: Aug 2003
Location: Montpellier, France, Europe, World, Solar System
Distribution: Debian Sarge, Fedora core 5 (i386 and x86_64)
Posts: 262
Rep:
|
Boot your machine in single user mode. At the prompt type passwd. Enter your password twice. Type exit and the machine will automatically switch to whatever runlevel is configured in /etc/inittab.
|
|
|
07-07-2006, 08:42 AM
|
#4
|
LQ Newbie
Registered: Apr 2004
Posts: 16
Original Poster
Rep:
|
Unfortunatly I only have SSH access as I am about 1000Km from site at the moment and will be for quite a while. Isn't there an ssh tool like brute force or something that can crack it. I've used so many passwords that I've actually locked myself out. I do have other access but no write permissions
|
|
|
07-07-2006, 08:47 AM
|
#5
|
LQ Guru
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870
|
Quote:
Originally Posted by chomps
Unfortunatly I only have SSH access as I am about 1000Km from site at the moment and will be for quite a while. Isn't there an ssh tool like brute force or something that can crack it. I've used so many passwords that I've actually locked myself out.
|
yes, there are brute force programs available... but i think it would be best to have a moderator jump in here before people start linking warez and the like, as this likely conflicts with the LQ rules...
Quote:
I do have other access but no write permissions
|
huh?? you have read access to the shadow file??
|
|
|
07-07-2006, 06:09 PM
|
#6
|
Senior Member
Registered: Aug 2005
Posts: 1,755
Rep:
|
Quote:
Originally Posted by chomps
Unfortunatly I only have SSH access as I am about 1000Km from site at the moment and will be for quite a while. Isn't there an ssh tool like brute force or something that can crack it. I've used so many passwords that I've actually locked myself out. I do have other access but no write permissions
|
* Can't you instruct someone at the site to boot into single-user mode?
* Do any of your users have any sudo privileges?
Otherwise you are out of luck. Consider how bad it would be if limited users without anything else could somehow become root.
Last edited by spooon; 07-07-2006 at 06:12 PM.
|
|
|
07-08-2006, 01:02 PM
|
#7
|
Senior Member
Registered: Nov 2000
Location: Seattle, WA USA
Distribution: Ubuntu @ Home, RHEL @ Work
Posts: 3,892
Rep:
|
I would have somebody who is on site to change the password to something known through single user mode, and then you log in and change again.
Brute force attempts are probably going to just waste your time for hours with no results.
|
|
|
All times are GMT -5. The time now is 06:40 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|