From owner-freebsd-questions@FreeBSD.ORG Fri Feb 12 14:05:28 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 12BA1106566B for ; Fri, 12 Feb 2010 14:05:27 +0000 (UTC) (envelope-from john@dexter.starfire.mn.org) Received: from dexter.starfire.mn.org (starfire.skypoint.net [173.8.102.29]) by mx1.freebsd.org (Postfix) with ESMTP id 86C578FC1B for ; Fri, 12 Feb 2010 14:05:26 +0000 (UTC) Received: (from john@localhost) by dexter.starfire.mn.org (8.11.3/8.11.3) id o1CE5Op68321; Fri, 12 Feb 2010 08:05:24 -0600 (CST) (envelope-from john) Date: Fri, 12 Feb 2010 08:05:24 -0600 From: John To: Julien Gormotte Message-ID: <20100212080524.B67483@starfire.mn.org> References: <0B47F5A9-A603-408F-A727-E81739E539C5@andersonbrothers.biz> <201002091059.27019.mike.jeays@rogers.com> <201002120124.o1C1OS3o015060@banyan.cs.ait.ac.th> <4B751F70.8060402@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5.1i In-Reply-To: <4B751F70.8060402@gmail.com>; from gormi456@gmail.com on Fri, Feb 12, 2010 at 10:29:20AM +0100 Cc: freebsd-questions@freebsd.org Subject: Re: PASSWORD LOST!! X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Feb 2010 14:05:28 -0000 On Fri, Feb 12, 2010 at 10:29:20AM +0100, Julien Gormotte wrote: > Le 12/02/2010 02:24, Olivier Nicole a écrit : > >>>> If you have physical access to the server, just reboot it in single user > >>>> > >>> mode, > >>> > >>>> and change the password. You might need to forcibly power it off. It is > >>>> > >>> all > >>> > >>>> covered in the handbook. If you don't have physical access, I think you > >>>> > >>> may > >>> > >>>> be out of luck... > >>>> > >>>> > >>> May be out of luck? I would hope he is totally out of luck without > >>> physical access, if > >>> you get my drift! > >>> > >>> Hope you do have physical access Eric.... > >>> > >>> > >> May not be out of luck depending on if the machine has had the last couple > >> of years worth of updates. I'm guessing not if nobody has the root password > >> and the persom who had set it up in the first place has been MIA for who > >> knows how long. > >> > > I was thinking along the same lines, but at same time Eric didn't know > > about booting to single user, so would he be able to remotely hack > > into his own system? > > > > Olivier > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > > > If this is a dedicated server (or a VPS, or RPS, or any type of server > hosted by a server provider), you may have a rescue system, so you can > boot it and chroot yourself to access the system. Or, in some cases, you > can have a KVM-over-IP access, so you can boot into single user mode. People, people - be careful that we are not creating a formula to break into FreeBSD servers around the world... The only acceptable solution is for someone in Eric's organization to secure physical access to the server. It may be in a co-lo situation, but if that's true, they must have a contract open and, if nothing else, they terminate the contract and get the machine back, though more likely, the contract allows them supervised access. Machines are not perfect - even without losing the root password, they break and need maintenance - this is a MAINTENANCE event and should be treated as such, just like a hard drive failure or a NIC failure. Creating a scheme for someone to break into FreeBSD systems remotely or to publicize schemes people have created to remotely manage their systems in ways that could be used to compromise them is foolishness! Regardless of the purity of his intention, Eric is asking us to tell him how to break into our homes or steal our cars. ;) -- John Lind john@starfire.MN.ORG