Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: root password
Top Forums Shell Programming and Scripting root password Post 17974 by Neo on Thursday 21st of March 2002 03:34:21 PM
Old 03-21-2002
It is not a security hole to be able to change the root password when you have physical access to the machine and the console.

If someone wanted to change the password and have physical access to the machine, there are so many ways to do it that it would take lots of discussions to list them all Smilie

When servers require physical security then they are placed in locked rooms with access controls.

Security is risk management centric and if your server is so critical that it needs to be protected from workers and admins, then you need a physical security policy and access control safeguards.
 

10 More Discussions You Might Find Interesting

1. Answers to Frequently Asked Questions

Lost root password / Can't login as root

We have quite a few threads about this subject. I have collected some of them and arranged them by the OS which is primarily discussed in the thread. That is because the exact procedure depends on the OS involved. What's more, since you often need to interact with the boot process, the... (0 Replies)
Discussion started by: Perderabo
0 Replies

2. Linux

how to access root priveliges if root password is lost

wish to know how to access root password it root password is forgotten in linux (1 Reply)
Discussion started by: wojtyla
1 Replies

3. UNIX for Dummies Questions & Answers

I need it to prompt me for a root password, so I don't have to log as root

Hi folks, I'm trying to install a program, and I want to place some of the executables into /usr/bin so that they can be executed from any folder on the computer. I've been giveng the root password, but told never to log in directly as root. Instead, I can wait for a password prompt. However, I... (2 Replies)
Discussion started by: lunchtime
2 Replies

4. Linux

root password

Hi everybody: I have a problem. How does it possible that when I type the root password on terminal, later write: su password: ****** System recognize the password, but when a I use the GUI environment, the system does not recognize it. Any suggestion. :o Thanks in advance. (2 Replies)
Discussion started by: tonet
2 Replies

5. HP-UX

Root Password

Hi all, I am changing the root password periodically from eg: password01 to password02. However, I can still use password01 after it is changed, it seems that it only authenticates up the first few characters. Please can someone let me know how I can fix this. Thanks Ryan (1 Reply)
Discussion started by: macgre_r
1 Replies

6. Shell Programming and Scripting

how to change root password using shell script with standard password

Hi Friends. I am new to scripting now i want to change the root password using the script with standard password. which is the easy scripting to learn for the beginner, Thanks in advance. (2 Replies)
Discussion started by: kurva
2 Replies

7. Solaris

Solaris 8 - Asks for current root password when trying to change root password.

Hello All, I have several solaris boxes running Solaris 8. When changing root passwords on them, all will simply ask for the new root password to change and of course to re-type the new password. One of the systems however asks for the existing root password before it will display the new password... (8 Replies)
Discussion started by: tferrazz
8 Replies

8. Solaris

Lost Root Password on VXVM Encapsulated Root Disk

Hi All Hope it's okay to post on this sub-forum, couldn't find a better place I've got a 480R running solaris 8 with veritas volume manager managing all filesystems, including an encapsulated root disk (I believe the root disk is encapsulated as one of the root mirror disks has an entry under... (1 Reply)
Discussion started by: sunnyd76
1 Replies

9. Ubuntu

Root access that can't change root password?

We are having a little problem on a server. We want that some users should be able to do e.g. sudo and become root, but with the restriction that the user can't change root password. That is, a guarantee that we still can login to that server and become root no matter of what the other users will... (2 Replies)
Discussion started by: 244an
2 Replies

10. UNIX for Beginners Questions & Answers

Can a root role change the root password in Solaris 10?

i do not have root on a solairs 10 server , however i do have the root role, i was wondering if I can change the root password as a a role with the passwd command? I have not tried yet. and do i have to use the # chgkey -p afterwards? i need to patch is why i am asking. thanks (1 Reply)
Discussion started by: goya
1 Replies

LEARN ABOUT OSF1

yppasswdd

yppasswdd(8)						      System Manager's Manual						      yppasswdd(8)

NAME

       yppasswdd, rpc.yppasswdd - server daemon for modifying the Network Information Service (NIS) password file

SYNOPSIS

       /usr/sbin/rpc.yppasswdd file [-m arg1 arg2...]

DESCRIPTION

       The yppasswdd daemon is a server that handles password change requests from yppasswd(1). It changes a password entry in the specified file,
       which is assumed to be in the same format described in passwd(4).  An entry in file will be changed  only  if  the  password  presented	by
       yppasswd(1) matches the encrypted password of that entry.

       If  the -m option is given, then after file is modified, a make(1) will be performed in /var/yp. Any arguments following the option will be
       passed to make. The -m option should be set only at a NIS master server machine.

       This server is not run by default, nor can it be started up from inetd(8).  If it is desired to enable remote  password	updating  for  the
       NIS, then an entry for yppasswdd should be put in the /sbin/init.d/nis file of the host serving as the master for the NIS passwd file.

SECURITY NOTE

       When enhanced security is installed and NIS is used to distribute the protected password authentication database, the yppasswdd daemon man-
       ages writes to that database.  A strict C2 security     policy, which is optionally configurable using  enhanced  security,  requires  each
       user  login or login failure to be recorded in the protected password authentication database.  These updates, in combination with password
       changes and system administration functions affecting user accounts, are coordinated by the daemon.

EXAMPLES

       If the NIS password file is stored as /var/yp/src/passwd, then to have password	changes  propagated  immediately,  the	server	should	be
       invoked as: /usr/sbin/rpc.yppasswdd /var/yp/src/passwd -m passwd DIR= /var/yp/src

FILES

SEE ALSO

       Commands: yppasswd(1), ypmake(8)

       Files: passwd(4), ypfiles(4)

																      yppasswdd(8)
All times are GMT -4. The time now is 03:03 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy