Slackware This Forum is for the discussion of Slackware Linux.
|
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
06-30-2014, 12:26 PM
|
#1
|
Member
Registered: Dec 2007
Location: Alabama USA
Distribution: Slackware current
Posts: 309
Rep:
|
Lost root password, did not forget it
I always use the same root password on all my computers & have for many years, I tried to log into one of them that I had logged into many times before. The "could not authenicate"came up. After trying for many times I chrooted into it with no problem and changed the password to what it was supposed to be. What I would like to know is what happened, I have never had this problem and sure would like to know what happened.
This computer is used by a friend of ours and and she can only surf and use gwenview for her photos etc.
|
|
|
06-30-2014, 08:26 PM
|
#2
|
Member
Registered: Mar 2008
Distribution: Slackware, Free-BSD
Posts: 53
Rep:
|
Quote:
Originally Posted by zrdc28
I always use the same root password on all my computers & have for many years, I tried to log into one of them that I had logged into many times before. The "could not authenicate"came up. After trying for many times I chrooted into it with no problem and changed the password to what it was supposed to be. What I would like to know is what happened, I have never had this problem and sure would like to know what happened.
This computer is used by a friend of ours and and she can only surf and use gwenview for her photos etc.
|
Well someone broke your password, maybe SSH brute force. You should check your logs.
|
|
1 members found this post helpful.
|
06-30-2014, 09:14 PM
|
#3
|
Member
Registered: Mar 2012
Distribution: Slackware, Alma, OpenBSD, FreeBSD
Posts: 541
Rep:
|
It may also be possible that if you upgraded your "etc" package that you overwrote some files (e.g. /etc/shadow).
|
|
1 members found this post helpful.
|
06-30-2014, 09:54 PM
|
#4
|
Guru
Registered: Mar 2004
Location: Canada
Distribution: Slackware
Posts: 7,413
|
Quote:
Originally Posted by zrdc28
After trying for many times I chrooted into it with no problem and changed the password to what it was supposed to be.
|
It might be the case that the PC has been penetrated. You changed the root password back to what it was supposed to be? Wouldn't the hacker know your password if he changed it(if there is a hacker)? It might be an idea to take the PC off-line and investigate the cause of this incident.
|
|
1 members found this post helpful.
|
07-01-2014, 12:58 AM
|
#5
|
Member
Registered: Dec 2007
Location: Alabama USA
Distribution: Slackware current
Posts: 309
Original Poster
Rep:
|
It never crossed my mind that it could have been hacked, and I don't know what logs to look at, of course the /var/log will be where I start. I will go ahead and change the password just in case!
|
|
|
07-01-2014, 05:03 AM
|
#6
|
Member
Registered: Nov 2013
Location: Antalya
Distribution: Slackware64 current
Posts: 119
Rep:
|
Same thing happened to me with an old computer. I always thought I had used the same password but somewhere along space-time, roughly 2 years ago, I added an extra character to my default password. I occasionally forget it.
|
|
|
07-01-2014, 10:17 PM
|
#7
|
LQ Newbie
Registered: Mar 2014
Distribution: Slackware 14.1, LinuxMint 16
Posts: 16
Rep:
|
I've never hacked anyones account before, but I would think if I did I would create a new account for myself with root privs so as not to raise suspicions. What I do on my system is I have a cron job that runs a script similiar to your typical doinst.sh that copies /etc/passwd, etc, compares it to the previous days copy and if there are any changes it emails me.
|
|
|
All times are GMT -5. The time now is 02:24 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|