Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: root privileges
Top Forums Programming root privileges Post 94366 by linuxpenguin on Thursday 29th of December 2005 07:22:41 PM
Old 12-29-2005
Hi Perderbo,
I am going to look foolish asking this question, but it is bothering me.

"Well, here's a clue..su obtains the encrypted string"

where does su obtain this encrypted string from ?
lets say root password is "unix.com". Lets also assume that su has somehow got the encrypted string for "unix.com". But what is the key it has used for encryption?
Since this is not known, if I have to simulate su, how do I get this encrypted string ?

so for eg su internal encrypted "unix.com" using key say "linuxpenguin", and encrypted key is "perderabo"
Now, I am simulating su, I have the encrypted string "perderabo" (dunno where i got it from, somehow I got it), my program prompts for password, which the user enters as say "unix.com" (hacker huh!! ), so now how do I encrypt this. Essentially I need to know the encrypted password and encryption key, both ? well then I would have even encrypted the root password Smilie
Can you please explain me understand this.

Regards
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Root privileges &Sudoer

Hi guys... how can a root assign a user all or most of the root privileges? is sudoer comand enough 4 this? thx alot.. (2 Replies)
Discussion started by: blue_7
2 Replies

2. Solaris

sshd (openssh) on SunOS without root privileges

Hi, I've just managed to install openssh in my home directory on a server I have access to by using --prefix=$HOME/local after ./configure. Another thing I was having trouble with without root access was privilege separation, so I disabled that in my sshd_config. However, when I run... (10 Replies)
Discussion started by: sayeo
10 Replies

3. UNIX for Dummies Questions & Answers

root privileges

Hello, As admin with root rights, to execute any command from another user without password-ask, I do : su - <user> -c "<cmd>" But how can I do to give the same rights to another physical user without using root user ? :confused: I've try to create another user "toor" with the same primary... (4 Replies)
Discussion started by: madmat
4 Replies

4. Linux

grant root privileges to ordinary user

Hi, Is it possible to grant root privileges to an ordinary user? Other than 'sudo', is there some way under Users/Groups configuration? I want ordinary user to be able to mount, umount and use command mt. /Brendan (4 Replies)
Discussion started by: brendan76
4 Replies

5. Shell Programming and Scripting

Python: Bind to port 80 as root, then drop privileges?

I have written a small web server in Python, and now I would like to run it on port 80, but in order to be able to bind to a port below 1024 I need to have root privileges. I don't want to run the server as root, though. How can I bind to port 80 as root and then drop root privileges? Thankful... (0 Replies)
Discussion started by: Ilja
0 Replies

6. Shell Programming and Scripting

Privileges like root

My English is no very good. I must make a bash scripting sh create like a backdoor, and when execute the script a user without privileges convert in super user or root, whithout introducing the password. In Spanish: Crear un script que sirva como puerta trasera al sistema, de manera que al... (1 Reply)
Discussion started by: kitievbr
1 Replies

7. Solaris

Gaining root privileges

Hello I am a new (and only) administrator of a Solaris 10 environment. The previous admin gave me a use (say user123) that is supposed to have administrative privileges. Now the problem is, the user does not have this privilege! Here is what i tried so far: $ id uid=109(user123) gid=1(other)... (3 Replies)
Discussion started by: abohmeed
3 Replies

8. HP-UX

User with root privileges in hp ux

hi, i am new in hp ux and i must create a user with root privileges and so i disable ssh connection from root login. thanks.. (6 Replies)
Discussion started by: eliste
6 Replies

9. UNIX for Dummies Questions & Answers

Can you gain root privileges if the suid program does not belong to root?

I had a question in my test which asked where suppose user B has a program with 's' bit set. Can user A run this program and gain root privileges in any way? I suppose not as the suid program run with privileges of owner and this program will run with B's privileges and not root. (1 Reply)
Discussion started by: syncmaster
1 Replies

10. Infrastructure Monitoring

Monitoring tools that do NOT require root privileges

Hi guys, I am currently managing an application running on around 150 servers. I only have application usage rights on those servers and do not have any root privileges. I have an external node that can connect to those servers and I have root privileges on that one box. I want to setup... (2 Replies)
Discussion started by: Junaid Subhani
2 Replies

LEARN ABOUT OSF1

dispcrypt

dispcrypt(3)						     Library Functions Manual						      dispcrypt(3)

NAME

       dispcrypt - encrypt a password, dispatching based on the associated algorithm (Enhanced Security)

LIBRARY

       Security Library (libsecurity.so)

       In order to quickstart a program, the program must be linked as follows:

	    -lsecurity -ldb -laud -lm

       See the shared library discussion in the Programmer's Guide for more information about using the quickstarting feature.

SYNOPSIS

       #include <prot.h>

       char *discprypt(
	    const char *plaintext,
	    const char *salt,
	    int algorithm_index);

PARAMETERS

       plaintext   The unencrypted password to be encrypted.

       salt	   A  string value which may be used as input to the selected encryption algorithm.  This parameter should be at least two charac-
		   ters in length, and null-terminated.  For password validation, it should be the encrypted password which is already in use.

       algorithm_index
		   A value from 0 to (get_num_crypts()-1), indicating which encryption algorithm is to be used.  For password validation, use  the
		   fd_oldcrypt	field  of  an es_passwd structure.  For password generation, use the fd_newcrypt field (and update the fd_oldcrypt
		   field at the same time as the fd_encrypt field if the change is successful).

DESCRIPTION

       The dispcrypt() function applies the specified encryption algorithm to the given password string and salt value, and returns the  encrypted
       form of the password.  The return value is static data which is overwritten on subsequent calls to this function or to the encryption algo-
       rithms which it calls, so callers should save a copy of the string unless the only use is an immediate comparison during  password  valida-
       tion.

RETURN VALUES

       This  routine returns NULL if there is an encryption failure.  Otherwise, it returns a pointer to static data, which is the null-terminated
       encrypted password result.

RELATED INFORMATION

       passwd(1), getespwent(3), get_num_crypts(3)

       Security delim off

																      dispcrypt(3)
All times are GMT -4. The time now is 01:36 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy