El dom, 31-08-2003 a las 08:47, KevinO escribió: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Damian Gatabria wrote: > > El sáb, 30-08-2003 a las 19:49, Frankie escribió: > > > >>>-----Original Message----- > >>>From: [EMAIL PROTECTED] > >>>[mailto:[EMAIL PROTECTED] Behalf Of Damian Gatabria > >>>Sent: Saturday, 30 August 2003 7:55 PM > >>>To: [EMAIL PROTECTED] > >>>Subject: Re: [expert] Password Question > >>> > >>> > >>>El sáb, 30-08-2003 a las 18:24, Jack Coates escribió: > >>> > >>>>On Sat, 2003-08-30 at 03:44, Damian Gatabria wrote: > >>>> > >>>>>El mié, 20-08-2003 a las 16:55, Bryan Phinney escribió: > >>>>> > >>>>>>On Wednesday 20 August 2003 10:24 am, Lawson, Jim wrote: > >>>>>> > >>>>>>>Okay So I just read an article that said mandrake 9.1 can > >>> > >>>reset any windoz > >>> > >>>>>>>password. Can any linux distro password for root or any > >>> > >>>other user be > >>> > >>>>>>>reset. Say if you forgot it? > >>>>>>> > >>>>>>>James S. Lawson > >>>>>>>Network Administrator > >>>>>> > >>>>>>The only way that I know of to do this is to bring the > >>> > >>>computer up in Single > >>> > >>>>>>User mode and reset root password from there. You should > >>> > >>>be able to do that > >>> > >>>>>>by putting options in Lilo at boot to bring up Linux in > >>> > >>>single user mode. > >>> > >>>>>>If you have password protected Lilo, I am not sure that you > >>> > >>>can reset the root > >>> > >>>>>>password without some type of reinstall. > >>>>> > >>>>> > >>>>>How do you password protec Lilo? :o)))))))))) > >>>> > >>>>you put a password in /etc/lilo.conf and run /sbin/lilo. > >>>> > >>>>Users must then enter the password in order to boot any kernels listed > >>>>by lilo. It isn't used all that much to my knowledge -- laptop users > >>>>generally use the BIOS password, desktops users generally don't use boot > >>>>passwords, and servers need to be able to reboot without physical help. > >>> > >>>Yet, i hate the fact that cracking the admin password in Win2k is > >>>harder than in Linux... :o/ > >>> > >> > >>Using linux single to reset the password is not cracking it.. > >>Since you can't find out what the old password was, you are just > >>creating a new one. > > > > > > I know, sorry for not expressing myself correctly. > > The point is, in windoze, if i want to change the admin > > password, there's two ways: > > > > 1) cracking te sam file. This is a rather long process and > > requires third-party software. > > > > Breaking into the registry or a sam file is trivially easy using a Linux boot > disk made for the purpose. I have done it for people several times. It doesn't > take much longer or more effort than just waiting for it to boot. > > > 2) Booting with a DOS diskette, load third-party NFTS-dos > > drivers, and move around a couple of files so i get a user > > manager instead of a login prompt. This is a tricky process > > and you risk fubaring the system. > > > > this means that the one aspect in which windows is > > far better from a security standpoint is protecting > > the admin password, since in Linux you only have to > > boot in single user mode.. it's sad, but true. > > > It's neither sad nor true. > > A Linux system can only be booted into single user mode if you have it setup > that way, although most are set that way by default for convenience. Having > physical access to a machine means that there isn't much security, aside from > encrypting the filesystem. This is why most consider the ability to boot into > single user from the console to not be a security risk -- it requires console > access. >
OK, so far, both James and you have said something about "password protecting single user mode" or "setting it up somehow"... so let's go back to my first question in this thread =) How can i do that? I just want the system to ask for a password ONLY when i tell it i want `linux single`. > Breaking into a Linux box w/o single (or init=...) is much harder than > cracking open an NT, 2000 or XP box. What i meant with my previous post is that it took me 30 seconds to learn how to change a root password in mandrake Linux, and for Windoze i had to surf the net for about 10 minutes to find boot diskettes that, from reading the manual they include, i can see it's at least a two or three steps longer process, warnings reading "Beware! the ntfs driver is not perfect, you can break your system!" and "Warning! you may loose all of the system's user passwords with this!" and stuff like that. > But once you open a box or boot a different kernel or OS on a box, all bets > are off. The only way to protect your system (data) is through decent encyption. agreed. Damian
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
