[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] password recovery

To: suse-security@xxxxxxxx
Subject: Re: [suse-security] password recovery
From: Rikard Johnels <rikjoh@xxxxxxxxx>
Date: Sun, 25 Jul 2004 22:30:24 +0200
Delivered-to: mailing list suse-security@xxxxxxxx
In-reply-to: <Pine.LNX.4.44.0407251844140.31264-100000@xxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:suse-security-help@suse.com>
List-post: <mailto:suse-security@suse.com>
List-subscribe: <mailto:suse-security-subscribe@suse.com>
List-unsubscribe: <mailto:suse-security-unsubscribe-suse=archive.cert.uni-stuttgart.de@suse.com>
Mailing-list: contact suse-security-help@xxxxxxxx; run by ezmlm
References: <Pine.LNX.4.44.0407251844140.31264-100000@xxxxxxxxxxxxxxxxxxxx>
User-agent: KMail/1.6.1

On Sunday 25 July 2004 18.44, Antun Balaz wrote:
> And what if the filesystem is encrypted?
>
> Best regards,
>
> Antun Balaz
> Institute of Physics, Belgrade
> Serbia and Montenegro
>
> On Sun, 25 Jul 2004, Rikard Johnels wrote:
> > On Saturday 24 July 2004 23.29, Michael Satterwhite wrote:
> > > On Saturday 24 July 2004 16:14, John Andersen wrote:
> > > > On Saturday 24 July 2004 08:14 am, Lyle Giese wrote:
> > > > > In RH, you could boot into single user mode and be auto
> > > > > connected as root without knowing the password.
> > > >
> > > > And you have conclusively proven that the same method
> > > > will not work in SuSE?
> > >
> > > It's been a while, but I proved it in 8.1. I had a root password get
> > > corrupted, I have no idea how, but it did. When I tried to log in
> > > single user, it wanted the root password. I used a Knopix CD, mounted
> > > my root partition, cleared the root password in shadow, and was able to
> > > get it back.
> >
> > Or you could
> > 1. boot via the CD/floppys
> > 2. mount the / (rw) (ie. mount /dev/whatever /mnt )
> > 3. chroot to the mounted / (chroot /mnt /bin/bash )
> > 4. issue passwd to change it (passwd)
> >
> > Its a "roundabout way" derived from installing Gentoo systems...
> >
> > --
> >          /Rikard
> >
> > -------------------------------------------------------------------------
> >----------- Rikard Johnels          email   : rikjoh@xxxxxxxxx
> >                         Web     : http://www.rikjoh.com
> >                         Mob     : +46 735 05 51 01
> >
> > ------------------------ Public PGP fingerprint
> > ---------------------------- < 15 28 DF 78 67 98 B2 16 1F D3 FD C5 59 D4
> > B6 78  46 1C EE 56 >
> >
> > --
> > Check the headers for your unsubscription address
> > For additional commands, e-mail: suse-security-help@xxxxxxxx
> > Security-related bug reports go to security@xxxxxxx, not here

Mount it the usual way for encrypted systems. I dont use it so i cant tell you 
how. The actual filesystem isnt relevant. As long as you can access it ok.
Just mount it rw and chroot into it.

-- 
         /Rikard

------------------------------------------------------------------------------------
Rikard Johnels          email   : rikjoh@xxxxxxxxx
                        Web     : http://www.rikjoh.com
                        Mob     : +46 735 05 51 01

------------------------ Public PGP fingerprint ----------------------------
< 15 28 DF 78 67 98 B2 16 1F D3 FD C5 59 D4 B6 78  46 1C EE 56 >

-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here

Follow-Ups:
- Re: [suse-security] password recovery
  - From: Dirk Schreiner

References:
- Re: [suse-security] password recovery
  - From: Antun Balaz

Prev by Date: Re: [suse-security] password recovery
Next by Date: Re: [suse-security] password recovery
Previous by thread: Re: [suse-security] password recovery
Next by thread: Re: [suse-security] password recovery
Index(es):
- Date
- Thread