Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Distribution: Debian, edition depends on what i run it, wheezy on main box.
Posts: 91
Rep:
Login-restore problem
Problem is simple-cant log in under ANY account on redhat7.3
Symptoms: machine boots and starts normal, services are starting, login appears.
when i insert username with i try to log on to, and press enter, it is back at username prompt.No logs, no errors, does'nt complain about anything
I can start it as linux rescue, mount all, filesystem was clean.
/etc/passd, shadow and /etc/security are at place, seems that pam conf is ok.
dont know was it right or not >did rpm -i --reinstall shadow-tools, pam and passwd packages.
same story, still no login, but not worse either.
Am kinda noob in such situation,.
problem is that machine is scsi raid system with partially mirrored volumes.And soft on it is very customized and expensive one.
if i have to make here some reinstall, it must work after, and there is no any installation source for that special soft.
What should i do try to fix this without reinstall??? (*besides rtfm?)
1. Boot with the rescue disk.
2. mount / (root)
3. chroot to the mounted directory
4. If seperate partitions, mount any other "system" partitions (/usr, /home)
5. try creating a new user (check for any errors)
6. shutdown
7. restart
8. see if you can login as the new user
Distribution: Debian, edition depends on what i run it, wheezy on main box.
Posts: 91
Original Poster
Rep:
Sad but true, box i was talking about was hacked.
I never tried to implie too much strong security on it, because it was "behind" hardware firewall on gateway.
Some bustard used debilean to turn box to spoofed psyBNC chathole, creating openVPN channel for it.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.