Login or Register to Ask a Question and Join Our Community


UNIX for Dummies Questions & Answers

Cannot do anything as root

 
Thread Tools Search this Thread
Top Forums UNIX for Dummies Questions & Answers Cannot do anything as root
# 8  
Old 10-19-2005
What about

file /sbin/sh

I think your /sbin/sh has been replaced, maliciously or accidentally....

Cheers
ZB
# 9  
Old 10-19-2005
Quote:
Originally Posted by zazzybob
What about

file /sbin/sh

I think your /sbin/sh has been replaced, maliciously or accidentally....

Cheers
ZB
-bash-3.00$ file /sbin/sh
/sbin/sh: ELF 32-bit LSB executable 80386 Version 1, dynamically linked, not stripped
# 10  
Old 10-19-2005
Quote:
Originally Posted by wcmiker
-bash-3.00$ file /sbin/sh
/sbin/sh: ELF 32-bit LSB executable 80386 Version 1, dynamically linked, not stripped
Files in /sbin directory should be statically linked. Like this
Code:
$ file /sbin/umount
/sbin/umount: ELF 32-bit LSB executable, Intel 80386, version 1 (FreeBSD), for FreeBSD 4.5, statically linked, stripped
$

Your /sbin/sh file has been definitely been replaced, and it looks like it has been replaced by make or something like that. That seems to be the output that you are getting on running sh.
# 11  
Old 10-19-2005
Quote:
Originally Posted by blowtorch
Your /sbin/sh file has been definitely been replaced, and it looks like it has been replaced by make or something like that. That seems to be the output that you are getting on running sh.
You are exactly right. Take a look at this.

Code:
-bash-3.00$ ls -l /sbin/sh
-r-xr-xr-x   1 root     root      812188 Oct 16 21:24 /sbin/sh
-bash-3.00$ ls -l /usr/local/bin/make
-rwxr-xr-x   1 mrodey   mrodey    812188 Sep 23 16:19 /usr/local/bin/make

The files are the same size. Now that we know this is the problem, is there any way to resolve it remotely when all of the root accounts are set to use sh?
# 12  
Old 10-19-2005
Computer
If / is writable, you could put a Makefile there and sign on. The default target in the Makefile would be made! Smilie

Sorry, I couldn't resist...
# 13  
Old 10-19-2005
That's absolutely insane, but might actually work. And the makefile need not be in root -- you seem to be able to pass parameters with su. Put this makefile somewhere:
Code:
SHELL=/sbin/tcsh
# Comment Line
# Uncomment line below for GNU make
#.PHONY:somesortofname

somesortofname:
        echo "Makefile has been run"
        echo "Second command"
#        download_replacement
#        overwrite /sbin/sh
#        chmod 755 /sbin/sh

Note that the eight spaces before things are actually tabs, and MUST be tabs or make will puke on it.

Then run:
Code:
su testroot -f /path/to/makefile

If you can execute an arbitrary makefile with root permissions, you can craft something to download and replace your broken sh like a batch file.
Last edited by Corona688; 10-19-2005 at 04:36 PM..
# 14  
Old 10-19-2005
I thought that su has a -c option and when it gets a -c, it happens to invoke the shell with a -c as well. This would mean that -c is hard-wired in. Looking at the Solaris source code, it seems that I was wrong and Corona688 has it right. su is simply passing arguments to the shell.

So yes, I think this just might work! Smilie
 
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. UNIX for Beginners Questions & Answers

Can a root role change the root password in Solaris 10?

i do not have root on a solairs 10 server , however i do have the root role, i was wondering if I can change the root password as a a role with the passwd command? I have not tried yet. and do i have to use the # chgkey -p afterwards? i need to patch is why i am asking. thanks (1 Reply)
Discussion started by: goya
1 Replies

2. UNIX for Dummies Questions & Answers

Can you gain root privileges if the suid program does not belong to root?

I had a question in my test which asked where suppose user B has a program with 's' bit set. Can user A run this program and gain root privileges in any way? I suppose not as the suid program run with privileges of owner and this program will run with B's privileges and not root. (1 Reply)
Discussion started by: syncmaster
1 Replies

3. Shell Programming and Scripting

Find users with root UID or GID or root home

I need to list users in /etc/passwd with root's GID or UID or /root as home directory If we have these entries in /etc/passwd root:x:0:0:root:/root:/bin/bash rootgooduser1:x:100:100::/home/gooduser1:/bin/bash baduser1:x:0:300::/home/baduser1:/bin/bash... (6 Replies)
Discussion started by: anil510
6 Replies

4. SuSE

Auditors want more security with root to root access via ssh keys

I access over 100 SUSE SLES servers as root from my admin server, via ssh sessions using ssh keys, so I don't have to enter a password. My SUSE Admin server is setup in the following manner: 1) Remote root access is turned off in the sshd_config file. 2) I am the only user of this admin... (6 Replies)
Discussion started by: dvbell
6 Replies

5. Solaris

Migration of system having UFS root FS with zones root to ZFS root FS

Hi All After downloading ZFS documentation from oracle site, I am able to successfully migrate UFS root FS without zones to ZFS root FS. But in case of UFS root file system with zones , I am successfully able to migrate global zone to zfs root file system but zone are still in UFS root file... (2 Replies)
Discussion started by: sb200
2 Replies

6. Solaris

Lost Root Password on VXVM Encapsulated Root Disk

Hi All Hope it's okay to post on this sub-forum, couldn't find a better place I've got a 480R running solaris 8 with veritas volume manager managing all filesystems, including an encapsulated root disk (I believe the root disk is encapsulated as one of the root mirror disks has an entry under... (1 Reply)
Discussion started by: sunnyd76
1 Replies

7. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

8. AIX

Can't login root account due to can't find root shell

Hi, yesterday, I changed root's shell in /etc/passwd, cause a mistake then I can not log in root account (can't find correct shell). I attempted to log in single-mode, however, it prompted for single-mode's password then I type root's password but still can not log in. I'm using AIX 5L version 5.2... (2 Replies)
Discussion started by: neikel
2 Replies

9. UNIX for Dummies Questions & Answers

I need it to prompt me for a root password, so I don't have to log as root

Hi folks, I'm trying to install a program, and I want to place some of the executables into /usr/bin so that they can be executed from any folder on the computer. I've been giveng the root password, but told never to log in directly as root. Instead, I can wait for a password prompt. However, I... (2 Replies)
Discussion started by: lunchtime
2 Replies

10. UNIX for Dummies Questions & Answers

Run non-root script as root with non-root environment

All, I want to run a non-root script as the root user with non-root environment variables with crontab. The non-root user would have environment variables for database access such as Oracle or Sybase. The root user does not have the Oracle or Sybase enviroment variables. I thought you could do... (2 Replies)
Discussion started by: bubba112557
2 Replies
Login or Register to Ask a Question