Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
|
08-08-2006, 05:58 PM
|
#1
|
LQ Newbie
Registered: Aug 2006
Posts: 6
Rep:
|
HELP tried all password resets-still no progress
I just got a server from an oil company that was throwing them out. I was happy to take a few and they were glad to get their hands off of the (you know oil companies with their millions to throw away at new servers) Anyways the server i have is running Red Hat Enterprise Linux 4? AS and i need to reset the root password so that i can work on it. As of now i have only ben able to get to the sh-2.05b shell prompt and when i type in passwd to reset i get the error -authentication token manipulation error- now this server is missing a powerbank that is supposed to be attatched with like 16 drives, but as to what i know it works without it. Am i missing a file or is there some security that the oil company put on here that i don't know about. Your help is appreciated
|
|
|
08-08-2006, 06:32 PM
|
#2
|
Member
Registered: Sep 2004
Location: Carlisle, MA
Distribution: Debian 8
Posts: 419
Rep:
|
take a look in /etc/shadow there should be a line that looks similar to this:
Code:
root:$1$jta6DcY/$fzZDKjIXQZ0xu8lrlQgD/0$rX:12732:0:::::
delete all the stuff in bold, that should blank the pass.
Last edited by AAnarchYY; 08-08-2006 at 06:37 PM.
|
|
|
08-08-2006, 07:02 PM
|
#3
|
LQ Newbie
Registered: Aug 2006
Posts: 6
Original Poster
Rep:
|
hm i tried to access the file but it says Permission denied
|
|
|
08-08-2006, 07:29 PM
|
#4
|
Member
Registered: Sep 2004
Location: Carlisle, MA
Distribution: Debian 8
Posts: 419
Rep:
|
you need to find a way to either boot with a livecd or remove the drive and put it in another computer, either do what i said earlier or chroot to the drive and passwd. what kernel version is it? uname -r
|
|
|
08-09-2006, 04:17 PM
|
#5
|
Member
Registered: Mar 2006
Location: Oakville
Distribution: Mandrake
Posts: 37
Rep:
|
reset root password
when linux is about to boot hit tab you will get a command prompt. Once your at the prompt you type linux single, passwd (your new password) and then your done.
Its been a while since I have done it like that, maybe they changed it.
edit: I just checked on the wonderful internet they still do this.
http://www.redhat.com/docs/manuals/l...ng-single.html
Last edited by Super7; 08-09-2006 at 04:22 PM.
|
|
|
08-09-2006, 04:56 PM
|
#6
|
Member
Registered: Sep 2004
Location: Carlisle, MA
Distribution: Debian 8
Posts: 419
Rep:
|
Quote:
Originally Posted by Super7
when linux is about to boot hit tab you will get a command prompt. Once your at the prompt you type linux single, passwd (your new password) and then your done.
Its been a while since I have done it like that, maybe they changed it.
edit: I just checked on the wonderful internet they still do this.
http://www.redhat.com/docs/manuals/l...ng-single.html
|
yeah that could work if its a poorly set up system...
|
|
|
08-10-2006, 12:23 AM
|
#7
|
LQ Newbie
Registered: Aug 2006
Posts: 6
Original Poster
Rep:
|
Doubt its a poorly set up system....this is a system from an oil company that they bought when it was top of the line
|
|
|
08-10-2006, 01:30 PM
|
#8
|
Member
Registered: Mar 2006
Location: Oakville
Distribution: Mandrake
Posts: 37
Rep:
|
did you try it out? It can be the most expensive serveron the face of the earth, but it could have been overlooked or not known about by the person that installed the software.
|
|
|
08-10-2006, 01:46 PM
|
#9
|
Member
Registered: Mar 2005
Location: UK
Distribution: Slackware
Posts: 794
Rep:
|
Do you need to keep redhat or can you just overwrite it with something else?
Last edited by simcox1; 08-10-2006 at 01:49 PM.
|
|
|
08-10-2006, 01:56 PM
|
#10
|
LQ Guru
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870
|
yeah, installing a new distro on it would be great IMHO... i mean, how do you know there are no backdoors in the current install?? using other people's installs gives me the creeps...
|
|
|
08-11-2006, 12:43 AM
|
#11
|
LQ Newbie
Registered: Aug 2006
Posts: 6
Original Poster
Rep:
|
Well i want to try and keep the orginal install due to scsi drivers and things and there's about 4 different installs??? I have no idea. I haven't had the time to try all the suggestions yet, but will when i get the time I will and post back. Thanx for the help so far
Last edited by NaomiHikaru; 08-11-2006 at 09:56 PM.
|
|
|
08-11-2006, 09:56 PM
|
#12
|
LQ Newbie
Registered: Aug 2006
Posts: 6
Original Poster
Rep:
|
ok so i got knoppix to work on the server and I again tried acessing the /etc/shadow file to no prevail. The thing is locked and/or encrypted to some extent that even knoppoix won't open it. I really think these oil companies thought their servers trough before putting them online.
|
|
|
08-11-2006, 10:52 PM
|
#13
|
Member
Registered: Sep 2004
Location: Carlisle, MA
Distribution: Debian 8
Posts: 419
Rep:
|
well what type of errors are you encourntering, can you even mount the drive? read any of the data? are you sure you tried knoppix thru root? can you chroot to the drive and passwd?
|
|
|
08-12-2006, 12:14 AM
|
#14
|
Member
Registered: Mar 2006
Location: Oakville
Distribution: Mandrake
Posts: 37
Rep:
|
why dont you just format? stop wasting your time, find the drivers for your controller and your fine. unless your after daa on thier servers (which they might have deleted) it might be hard but definatly not impossible. you can format in 30 mins tops on a high end server, even picking through the driver lists, and if its a high end expensive server the drivers are there 99% of the time.
|
|
|
08-12-2006, 12:25 AM
|
#15
|
LQ Newbie
Registered: Aug 2006
Posts: 6
Original Poster
Rep:
|
Ok well i finnaly was able to chroot the drive and change the password, but all in all its become useless because it was part of a cluster. At this point in time i'm thinking of doing a fresh install. I'm not after any of the data, cause its all geological, any good linux versions that implement 4Xp3 700mhz xenon procs and scsi drives?
|
|
|
All times are GMT -5. The time now is 04:53 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|