03-21-2002
It is not a security hole to be able to change the root password when you have physical access to the machine and the console.
If someone wanted to change the password and have physical access to the machine, there are so many ways to do it that it would take lots of discussions to list them all
When servers require physical security then they are placed in locked rooms with access controls.
Security is risk management centric and if your server is so critical that it needs to be protected from workers and admins, then you need a physical security policy and access control safeguards.
10 More Discussions You Might Find Interesting
1. Answers to Frequently Asked Questions
We have quite a few threads about this subject. I have collected some of them and arranged them by the OS which is primarily discussed in the thread. That is because the exact procedure depends on the OS involved. What's more, since you often need to interact with the boot process, the... (0 Replies)
Discussion started by: Perderabo
0 Replies
2. Linux
wish to know how to access root password it root password is forgotten in linux (1 Reply)
Discussion started by: wojtyla
1 Replies
3. UNIX for Dummies Questions & Answers
Hi folks,
I'm trying to install a program, and I want to place some of the executables into /usr/bin so that they can be executed from any folder on the computer. I've been giveng the root password, but told never to log in directly as root. Instead, I can wait for a password prompt. However, I... (2 Replies)
Discussion started by: lunchtime
2 Replies
4. Linux
Hi everybody:
I have a problem. How does it possible that when I type the root password on terminal, later write:
su
password: ******
System recognize the password, but when a I use the GUI environment, the system does not recognize it.
Any suggestion. :o
Thanks in advance. (2 Replies)
Discussion started by: tonet
2 Replies
5. HP-UX
Hi all,
I am changing the root password periodically from eg: password01 to password02. However, I can still use password01 after it is changed, it seems that it only authenticates up the first few characters.
Please can someone let me know how I can fix this.
Thanks
Ryan (1 Reply)
Discussion started by: macgre_r
1 Replies
6. Shell Programming and Scripting
Hi Friends.
I am new to scripting now i want to change the root password using the script with standard password.
which is the easy scripting to learn for the beginner, Thanks in advance. (2 Replies)
Discussion started by: kurva
2 Replies
7. Solaris
Hello All,
I have several solaris boxes running Solaris 8. When changing root passwords on them, all will simply ask for the new root password to change and of course to re-type the new password. One of the systems however asks for the existing root password before it will display the new password... (8 Replies)
Discussion started by: tferrazz
8 Replies
8. Solaris
Hi All
Hope it's okay to post on this sub-forum, couldn't find a better place
I've got a 480R running solaris 8 with veritas volume manager managing all filesystems, including an encapsulated root disk (I believe the root disk is encapsulated as one of the root mirror disks has an entry under... (1 Reply)
Discussion started by: sunnyd76
1 Replies
9. Ubuntu
We are having a little problem on a server. We want that some users should be able to do e.g. sudo and become root, but with the restriction that the user can't change root password. That is, a guarantee that we still can login to that server and become root no matter of what the other users will... (2 Replies)
Discussion started by: 244an
2 Replies
10. UNIX for Beginners Questions & Answers
i do not have root on a solairs 10 server , however i do have the root role, i was wondering if I can change the root password as a a role with the passwd command? I have not tried yet.
and do i have to use the # chgkey -p afterwards?
i need to patch is why i am asking.
thanks (1 Reply)
Discussion started by: goya
1 Replies
LEARN ABOUT OPENSOLARIS
vipw
vipw(1B) SunOS/BSD Compatibility Package Commands vipw(1B)
NAME
vipw - edit the password file
SYNOPSIS
/usr/ucb/vipw
DESCRIPTION
vipw edits the password file while setting the appropriate locks, and does any necessary processing after the password file is unlocked. If
the password file is already being edited, then you will be told to try again later. The vi(1) editor will be used unless the environment
variable VISUAL or EDITOR indicates an alternate editor.
vipw performs a number of consistency checks on the password entry for root, and will not allow a password file with a "mangled" root entry
to be installed. It also checks the /etc/shells file to verify the login shell for root.
FILES
/etc/ptmp
/etc/shells
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWscpu |
+-----------------------------+-----------------------------+
SEE ALSO
passwd(1), vi(1), passwd(4), attributes(5)
SunOS 5.11 14 Sep 1992 vipw(1B)