LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 08-15-2002, 12:53 AM   #1
solo545
LQ Newbie
 
Registered: Aug 2002
Posts: 6

Rep: Reputation: 0
Lightbulb Need help getting root access - Unusual Situation


Hi All:

I have physical access to an old Micron Netframe 5001 machine that is running an old AMI Megaraid controller. I also have access to the machine via a non-root user account. Distribution is Redhat 5, kernel 2.2.7.

I have tried all of the standard tricks of typing "linux single", "linux init=/bin/bash", etc at the LILO prompt. The only thing that happens is the the machine boots into it's default kernel. (Hitting tab reveals four different kernel selections.) ... Is there a way to break out into the "true" LILO: prompt that will allow me to execute "linux single" ?

I've also tried to boot off of a linux install diskette and then running the install and breaking it in the middle. This doesn't seem to work because of the RAID controller and Linux not recognizing it during the install process.

I've also tried Tom's Root Boot diskette and running the "mknod" command to try to mount "/dev/sda1" and this doesn't work either. Unfortunately, the CDROM is not bootable (talked to micron tech support and they said this model did not have a bootable cdrom - some did and some didn't and I was unlucky, I guess).

I have downloaded the ISO for Super Rescue 2.1.0 and COULD install a bootable CDROM drive, but would like to avoid having to take the server apart to do this. I would hope that the Super Rescue boot CD would have the appropriate AMI Megaraid drivers.

I cannot afford to take this server down and rebuild it, so my options are limited.

Any help would be greatly appreciated...

S
 
Old 08-15-2002, 12:59 AM   #2
solo545
LQ Newbie
 
Registered: Aug 2002
Posts: 6

Original Poster
Rep: Reputation: 0
And here's the lilo.conf file:

boot=/dev/sda
#map=/boot/map
install=/boot/boot.b
prompt
timeout=50
image=/boot/2.2.7t
label=2.2.7t
root=/dev/sda1
read-only
image=/boot/2.2.7
label=2.2.7
root=/dev/sda1
read-only
image=/boot/2.2.2
label=2.2.2
root=/dev/sda1
read-only
image=/boot/2.2.3ac2
label=2.2.3ac2
root=/dev/sda1
read-only
 
Old 08-15-2002, 11:35 AM   #3
neo77777
LQ Addict
 
Registered: Dec 2001
Location: Brooklyn, NY
Distribution: *NIX
Posts: 3,704

Rep: Reputation: 56
So single mode is not working?
at lilo prompt
boot: 2.2.7t single
won't work?
 
Old 08-15-2002, 12:53 PM   #4
solo545
LQ Newbie
 
Registered: Aug 2002
Posts: 6

Original Poster
Rep: Reputation: 0
hmm... I'm not sure if I tried that or not....

LILO: <image name> single

I will give that a try...

much thanks
 
Old 08-15-2002, 05:00 PM   #5
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,409
Blog Entries: 55

Rep: Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582
Maybe you could use some bootdisk that has megaraid support, have a look at domsch.com/linux/, halfway down the page.
 
Old 08-15-2002, 06:36 PM   #6
TruckStuff
Member
 
Registered: Apr 2002
Posts: 498

Rep: Reputation: 30
Forgive me for asking, but where did the system admin go? Will he be gone long enough that it is absolutely critical that you have root access to this machine? You'll have to forgive my skepticism as many people post in security forums about how to gain root access "on a broken machine at work" or "for a friend" or some other excuse.
 
Old 08-15-2002, 07:20 PM   #7
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,409
Blog Entries: 55

Rep: Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582
Forgive me for asking, but where did the system admin go? Will he be gone long enough that it is absolutely critical that you have root access to this machine? You'll have to forgive my skepticism as many people post in security forums about how to gain root access "on a broken machine at work" or "for a friend" or some other excuse.

I share your concerns about questions like these, truth is we have no means to vrfy if he's in his right to break this box. Stupidly enough, we didn't even try to question it. The other question is how far would we go supporting this kind of stuff.

If more ppl object against questions like these and have an idea of where they would like to put the limit, plz post your comments.
 
Old 08-15-2002, 08:32 PM   #8
solo545
LQ Newbie
 
Registered: Aug 2002
Posts: 6

Original Poster
Rep: Reputation: 0
I understand your concerns. All I can say is that I am administering this box now and was not given the root password.

I can't and won't expect you to believe me, but consider this: If I have physical access to the machine, woudn't it be likely that I AM the admin? Otherwise, the admin would be an idiot to let other people have physical access to the machine.

I am NOT asking for hacks to get to the machine remotely. I only want suggestions for obtaining root assuming PHYSICAL access.

S
 
Old 08-15-2002, 08:38 PM   #9
solo545
LQ Newbie
 
Registered: Aug 2002
Posts: 6

Original Poster
Rep: Reputation: 0
unSpawn... thanks for the info on the Megaraid drivers... that was pretty helpful!
 
Old 08-15-2002, 08:59 PM   #10
jeremy
root
 
Registered: Jun 2000
Distribution: Debian, Red Hat, Slackware, Fedora, Ubuntu
Posts: 13,028

Rep: Reputation: 3756Reputation: 3756Reputation: 3756Reputation: 3756Reputation: 3756Reputation: 3756Reputation: 3756Reputation: 3756Reputation: 3756Reputation: 3756Reputation: 3756
I think solo545 makes a fairly good point. Questions on how to hack a remote machine will not be tolerated here. Once someone has physical access however it becomes a grey area. In reality with physical access you could just take out the HD and mount it in another machine if needed, so I think this question is acceptable. I am also interested in others opinions on this though. Thank you for bringing this up TruckStuff.

--jeremy
 
Old 08-17-2002, 12:46 PM   #11
TruckStuff
Member
 
Registered: Apr 2002
Posts: 498

Rep: Reputation: 30
Perhaps a good universal answer would be "use crack"? If someone can get the passwd/shadow file there is probably some kind of high-level access, be it remote or local. Might not want to give too many details on exactly how to use or run crack, but it might be a start.

And that would be my suggestion to solo: try crack to get the password.
 
Old 08-17-2002, 09:06 PM   #12
solo545
LQ Newbie
 
Registered: Aug 2002
Posts: 6

Original Poster
Rep: Reputation: 0
OK, I do have a copy of the /etc/shadow file and ran "John the Ripper" for 15 days on just the root passwd with no results. I'll definitely have to check this out. Thanks Truckstuff...S
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
am i able to access root? smay LinuxQuestions.org Member Intro 1 08-24-2005 11:32 AM
How to get root access?? anjum Ubuntu 7 08-09-2005 11:47 AM
Root Access Obie Linux - Security 25 06-07-2004 12:03 PM
getting access to the root deathmonkey Linux - Software 6 09-10-2003 01:27 AM
Root don't have access Rabbit Linux - Hardware 2 10-03-2002 05:54 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:56 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration