How to crack Root with Grub

Protecting your Linux box

Postby farhantoqeer » Mon Nov 03, 2003 3:00 pm

As i remember Faraz.Fazil already wrote this thing on his post.

Cheers! :lol:
A: Yes
Q: Is top-posting bad?
farhantoqeer
Major General
 
Posts: 917
Joined: Thu Jun 27, 2002 5:45 pm
Website: http://www.emergen.biz
Location: Karachi

Postby outstream » Mon Nov 03, 2003 6:18 pm

oh i didnt notice that, i had been trying with -s and 1 only and they both didnt work for me
Testing?What's that? If it compiles, its good, if it boots up it is perfect.
----------------------------------------------------
Imran
Registered Linux User # 334322
outstream
Naib Subedar
 
Posts: 322
Joined: Wed Sep 24, 2003 10:04 pm
Location: islamabad

Postby zaeemarshad » Mon Nov 03, 2003 10:23 pm

i tried the single and 1 method and they work for me. i am using grub and i have always used that method. -s is new for me. i learned something too

regards
zaeem
zaeemarshad
Lieutenant Colonel
 
Posts: 660
Joined: Sat Jul 06, 2002 12:35 pm
Website: http://zaeem.no-ip.org
WLM: zarshadvirk@hotmail.com
Yahoo Messenger: negativecreep61@yahoo.com
AOL: zarshadvirk
Location: Islamabad

Postby saquib_javed » Sat May 22, 2004 8:58 pm

Salaam,

well everyone want's to change the root password, does any one nos that how to stop this single,s or 1 argument for the kernel i mean that by modifying the kernel parameter source file where there is single,s or 1 is written just replace with it anyother thing and rekompile the cernel and install it. I dont kno that it works or not (if some one nos then tell me plz) or if there is any other way to stop it. I want to kno because it will be very very helpful for my practical life

thanks
Use Linux and feel Free.
OR
Feel free to use Linux. ;)
saquib_javed
Naib Subedar
 
Posts: 344
Joined: Sat Apr 10, 2004 9:07 pm
Website: http://www17.brinkster.com/saquibjaved
Location: Karachi

Re:

Postby LinuxFreaK » Sun May 23, 2004 12:36 am

Dear saquib_javed,
Salam,

Securing Your System:
The above demonstrates why securing your server's console is important! In about 5 minutes, anyone with physical access to the computer can change the root password and get root access by passing the linux single option at the lilo boot prompt. LILO can be protected against this by putting a password on options passed to the kernel.

In /etc/lilo.conf, you'll see your definition for the boot image, for example:

Code: Select all

image=/vmlinuz
label=linux
initrd=/boot/initrd-2.4.x.img
read-only
root=/dev/hda6


After this add:

Code: Select all

password=yourpassword

restricted


Exit, and run "/sbin/lilo". If someone tries to pass an option like "single" they'll need the password. Next, make the lilo.conf file read-writeable by root only:

# chmod 600 /etc/lilo.conf

Be aware that these passwords will merely slow down the determined attacker. They won't prevent someone from booting from a linux boot floppy, and mounting your root partition. The only way to get around this would be to disable booting from a floppy in your computer's BIOS, then password protect the BIOS.

Best Regards.
Farrukh Ahmed
LinuxFreaK
Site Admin
 
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
ICQ: 82075802
Website: http://www.linuxpakistan.net/wiki/index.php?pagename=LinuxFreak
WLM: f4fahmed@hotmail.com
Yahoo Messenger: f4fahmed@yahoo.com
AOL: linuxpakistan@aol.com
Location: Karachi

Postby saquib_javed » Sun May 23, 2004 4:43 pm

Salam,

thanx

this I already kno cause it's listed in rh site 8) but i have tried this thing with the suse linux (live) but it always asks that Please enter root password for recovery or something like that I also tried it with s and 1 but still :( but i was delighted that someone has a different thing and i cant guess it :) this made me to think that the source code has been modified now if the boot sequence of the komputer is set only to hd and even if the bootloader is not given a password u dont have to worry about it.

If i m still wrong :oops: then please guide me

thanxs
Use Linux and feel Free.

OR

Feel free to use Linux. ;)
saquib_javed
Naib Subedar
 
Posts: 344
Joined: Sat Apr 10, 2004 9:07 pm
Website: http://www17.brinkster.com/saquibjaved
Location: Karachi


Return to “%s” Security

Who is online

Users browsing this forum: No registered users and 1 guest