[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] pro's and cons of not letting GUI change ro ot password
- Subject: Re: [cobalt-security] pro's and cons of not letting GUI change ro ot password
- From: "Jelmer Jellema" <cobalt@xxxxxxxxxxxxxxx>
- Date: Mon, 4 Mar 2002 11:08:03 +0100
- Organization: Spin in het Web (www.spininhetweb.nl)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi Gerald,
> On Saturday 02 March 2002 09:55 am, Jelmer Jellema wrote:
> >
> > But not if you, as I originally proposed, hacked that function out of
the
> > admin lib..... So if you would want to do that, you'd better not forget
the
> > root password, because the button would not work any more (unless you
also
> > changed pwreset as proposed...)
> >
>
> excuse me, I missed that part of the thread.
> If you forget the root password just boot in single user mode using the
> console port and change the root password.
>
> Providing you have phy accesss to your RaQ.
All right, that's some tip, forgot you could do that or a RaQ.
But then again: rereading /usr/local/sbin/pwreset is seems to me now that
the root password is only blocked if it is not available in
/etc/passwd.master. In my version, it is and it's open (it's not in the real
password and shadow files). So, now I'm confused: it looks that after all
pressing the button will clear the root password.
My mistake, then. Is there anyone with a test RaQ 4 who could just test what
this button does?
Jelmer