Full Disclosure mailing list archives
Re: Root password change
From: Michael Holstein <michael.holstein () csuohio edu>
Date: Fri, 31 Mar 2006 09:21:13 -0500
Trivial to defeat. Just boot in to single user mode with these kernel
options:
single init=/bin/bash
Again .. only due to initial misconfiguration.Nobody should allow alternate switches to be passed to the kernel at boot .. either by password-protecting the bootloader, or via firmware (as with OpenBoot).
/mike. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Root password change Mockbee, Tom (Mar 30)
- Re: Root password change Michael Holstein (Mar 30)
- Re: Root password change Chris Adams (Mar 30)
- Re: Root password change spam (Mar 30)
- Re: Root password change Michael Holstein (Mar 30)
- Re: Root password change Anders B Jansson (Mar 30)
- Re: Root password change Kerry Thompson (Mar 30)
- Re: Root password change Gary E. Miller (Mar 30)
- Re: Root password change Michael Holstein (Mar 31)
- Re: Root password change Valdis . Kletnieks (Mar 31)
- Re: Root password change gboyce (Mar 31)
- Re: Root password change Valdis . Kletnieks (Mar 31)
- Re: Root password change gboyce (Mar 31)
- Re: Root password change Michael Holstein (Mar 30)