From owner-freebsd-questions@FreeBSD.ORG Mon May 28 14:34:38 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 8CFBF16A477 for ; Mon, 28 May 2007 14:34:38 +0000 (UTC) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: from gizmo.acns.msu.edu (gizmo.acns.msu.edu [35.8.1.43]) by mx1.freebsd.org (Postfix) with ESMTP id 54F0C13C4AD for ; Mon, 28 May 2007 14:34:38 +0000 (UTC) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: from gizmo.acns.msu.edu (localhost [127.0.0.1]) by gizmo.acns.msu.edu (8.13.6/8.13.6) with ESMTP id l4SEUQjS024491; Mon, 28 May 2007 10:30:26 -0400 (EDT) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: (from jerrymc@localhost) by gizmo.acns.msu.edu (8.13.6/8.13.6/Submit) id l4SEUQDn024490; Mon, 28 May 2007 10:30:26 -0400 (EDT) (envelope-from jerrymc) Date: Mon, 28 May 2007 10:30:26 -0400 From: Jerry McAllister To: Schiz0 Message-ID: <20070528143026.GB24417@gizmo.acns.msu.edu> References: <8d23ec860705271617v60fab47fo264e8aa43120338a@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <8d23ec860705271617v60fab47fo264e8aa43120338a@mail.gmail.com> User-Agent: Mutt/1.4.2.2i Cc: freebsd-questions@freebsd.org Subject: Re: Locked Myself Out - Cannot "su" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 28 May 2007 14:34:38 -0000 On Sun, May 27, 2007 at 07:17:20PM -0400, Schiz0 wrote: > This is one of those things where after you realize what you've done, > you just want to smack yourself. > > I've been working on hardening my FreeBSD 6.2-Stable box. I disabled > root login from everywhere, including the console (The box isn't > physically secure, so I didn't want anyone screwing around). Now, me > being stupid, didn't reboot after making all these changes to harden > it. So I finally rebooted (With the secure level set to 2) and I found > that I can't run "su." I get the following error: > > $ su - > su: not running setuid > > I can't shutdown since I can't become root, so I pulled the plug and > rebooted into single-user mode. I edited /etc/rc.conf and set > kern_securelevel_enable="NO" > > I rebooted again, but for some reason I still get the same error for "su." > > So basically, I locked myself out of my box completely. I fail :-( > > su has the following permissions: > -r-sr-xr-x 1 root wheel schg 12240 May 13 13:15 su That looks correct. It is the same as mine except the size is different. It is probably a different version. Is your id in the wheel group in /etc/group? Are you in some weird shell? (tcsh[csh] is least weird on FreeBSD, followed by sh) ////jerry > > And sudo isn't installed, unfortunately. Any ideas of how to get root back? > > Thanks! > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"