Mailinglist Archive: opensuse (2664 mails)
| < Previous | Next > |
Re: [opensuse] root password in shadow?
- From: Anders Johansson <ajh@xxxxxxxxxx>
- Date: Wed, 14 May 2008 19:20:12 +0200
- Message-id: <200805141920.12594.ajh@xxxxxxxxxx>
On Wednesday 14 May 2008 10:20:38 LLLActive@xxxxxxx wrote:
How is this a loop hole? If you can edit /etc/file, or even read it, you're
already root
You are aware I hope that root can run "passwd" and set a new password without
having to give the old one
So if you're root you can set the password. This is not a loophole
But anyway, if you really want to be able to set a blank password, edit
/etc/pam.d/common_auth and add "nullok" on the pam_unix2.so line
Anders
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
Hi all,
In SuSE Linux 9.x I used to be able to reset the root password in the
/etc/shadow file to nul, and could reboot without password and give a
new one. I have read somewhere that this loophole was removed in later
OpenSUSE versions. I actually tried to do the same trick in OpenSUSE
10.3; no go.
Is there another way to delete or reset the root password if U can't
remember it any more on OpenSUSE versions?
How is this a loop hole? If you can edit /etc/file, or even read it, you're
already root
You are aware I hope that root can run "passwd" and set a new password without
having to give the old one
So if you're root you can set the password. This is not a loophole
But anyway, if you really want to be able to set a blank password, edit
/etc/pam.d/common_auth and add "nullok" on the pam_unix2.so line
Anders
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
| < Previous | Next > |