On Monday 07 April 2003 11:15 am, fsanta wrote:
On Monday 07 April 2003 12:01, you wrote:
I'm root on our lan with around 50 users. How can I get a list of their passwords?
You don't. Well, you could try to run something John The Ripper against /etc/shadow
Does that mean that I can't or I shouldn't?
Shouldn't
You don't need to, as r00t, you can always su to them ;)
But I want to find out what their password was. Can I do that? Is there something which will hack into /etc/shadow and decipher it?
Why do you want to know what the password is? You know you can get to their data etc etc with su. The value of the password is the value of what is hidden behind it. So if you can get to the thing the password protects, the only value of the password is if a user is using the same password to protect something else for which you are not root... Are you dangerous to know? ;-) regards Vince Littler