Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
12-23-2002, 10:12 PM
|
#1
|
LQ Newbie
Registered: Dec 2002
Location: Huntsville, AL
Posts: 3
Rep:
|
Mandrake Linux Root Pswd/Login HELP
My father set up my personal domains on our home computer Mandrake Linux server.
He died November 19, 2002 without ever giving the password to anyone. Our backdoor took an exit stage left.
I've tried sever Lilo root password hacks, but it still will not let me login for it still requires a login username AND password. What either are, I don't know.
From the little hastened research I've done I think I've come to the conclusion that this is a "shadow" password.
Unfortunately, I am a Windows user and know jack about Linux... yet. This was no issue until I discovered that my domains are unviewable.
http://www.elzora.com
http://www.laghalda.com
If anyone can help me, please, I'd most appreciate it!
Signed,
Totally Lost and Helpless Windows User
P.S. Almost forgot... Spot (the server) routes our DSL with a timer somehow as well and it needs to be corrected...
Last edited by ElZora; 12-23-2002 at 10:14 PM.
|
|
|
12-24-2002, 09:04 AM
|
#2
|
LQ Newbie
Registered: Dec 2002
Location: Canada
Distribution: Debian, BSD, IRIX, MacOS, Solaris, AIX, HP-UX, other Unix, other Linux, other, windos (declining...)
Posts: 25
Rep:
|
You need to get either a Linux 'rescue floppy' or bootable CD such as Knoppix. Once you boot from the floppy or CD, you can use the command line to check where the 'root' partition is located on your hard drive. You would then mount that and edit the file '/etc/shadow' to remove the password from the 'root' account. Obviously, there are a couple tools you need to become familiar with before jumping in to this if you don't want to risk trashing the system you're trying to recover!
Burn yourself a Knoppix CD. That's an excellent tool to start with.
|
|
|
12-25-2002, 10:17 AM
|
#3
|
LQ Newbie
Registered: Dec 2002
Location: Huntsville, AL
Posts: 3
Original Poster
Rep:
|
Thanks, I'll give that a try.
Not sure what most of it means or how to do it... but I'll give it a shot! What are the chances I'll lose all or any data? Would I be better off unplugging Spot and hosting my domains somewhere?
Thanks for your help,
Zora
|
|
|
12-25-2002, 12:11 PM
|
#4
|
LQ Newbie
Registered: Dec 2002
Location: Canada
Distribution: Debian, BSD, IRIX, MacOS, Solaris, AIX, HP-UX, other Unix, other Linux, other, windos (declining...)
Posts: 25
Rep:
|
I'd say it entirely depends how willing you are to learn how to administrate the Linux box. Once you get used to the Unix-like approach to things, I think you'll see why so many of us appreciate it. Unless your sites get a lot of traffic, hosting them on your existing high-speed connection is a much cheaper way to go than paying a hosting provider.
It should be pretty apparent which things could damage your data: Don't let anything re-write your partition tables; don't let anything delete files. Just find a way to get in and blank the passwd field for root in /etc/shadow. Then set a new password for root with the 'passwd' command.
The line in /etc/shadow you need to change will look something like this:
root:$1$gmbyRbTU$SR.9MaRs6Mhj2NSDrHVpm.:11596:0:99999:7:::
Where you need to delete the '$1$gmbyRbTU$SR.9MaRs6Mhj2NSDrHVpm.' part (which is and md5 hash, but yours may use des, and will be a different string in any case), so it winds up looking like:
root::11596:0:99999:7:::
Which means root has no password. Then run 'shutdown -r now' to reboot, and you can log in as root to run 'passwd' and set a new password and fix whatever else is wrong.
Sympathies too, by the way!
|
|
|
12-26-2002, 08:54 AM
|
#5
|
Member
Registered: Feb 2002
Location: Pittsburgh, PA, USA
Posts: 73
Rep:
|
I use Redhat linux, and whenever I forget the root password, I just login in single user mode and change it that way. Very easy to do if you have physical access to the machine.
Just do a search on here or google for 'lost root password linux' or 'single user mode linux' and you should find more answers.
M
|
|
|
12-26-2002, 01:47 PM
|
#6
|
LQ Newbie
Registered: Dec 2002
Location: Huntsville, AL
Posts: 3
Original Poster
Rep:
|
I tried all of this, and I still can't get in, lol.
I think my best route is going to be starting from scratch and building up everything.
My dad was a computer pro and did his best to lock me out of the server... he certainly succeeded.
Thank you all for your help!
|
|
|
All times are GMT -5. The time now is 02:04 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|