Re: [vox-tech] Not able to log into root.
Sorry to reply to my own thread, but in /etc/passwd I do not have root. I didn't remove it though. Rusty Minden On Tuesday 23 April 2002 11:52 am, you wrote: I am not able too loginto root and when I try to su into root I get this error below any ideas? rdm@cc668999-a:~ su Password: su: cannot set groups: Operation not permitted Rusty Minden ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Not able to log into root.
Dohh! Yes I do I flubbed when doing a search using vim sorry. Still can't use su to log into root. Rusty On Tuesday 23 April 2002 11:55 am, you wrote: Sorry to reply to my own thread, but in /etc/passwd I do not have root. I didn't remove it though. Rusty Minden On Tuesday 23 April 2002 11:52 am, you wrote: I am not able too loginto root and when I try to su into root I get this error below any ideas? rdm@cc668999-a:~ su Password: su: cannot set groups: Operation not permitted Rusty Minden ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Not able to log into root.
hi rusty, off the top of my head, i would say that your su needs to be setuid root and it's not. you should have a permission of 4755 (rwsr-xr-x) on su. to verify this, i went to google groups: http://groups.google.com/advanced_group_search in with all of the words i typed: su cannot set groups the first item reads: su problem: su: cannot set groups: Operation not permitted i click on it, then click on complete thread. here's the URL: http://groups.google.com/groups?hl=enth=4dec5a92aba3e0rnum=1 it looks like all the responses to this question point to the permission problem. :-) hth, pete begin Rusty Minden [EMAIL PROTECTED] I am not able too loginto root and when I try to su into root I get this error below any ideas? rdm@cc668999-a:~ su Password: su: cannot set groups: Operation not permitted Rusty Minden ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Not able to log into root.
On Tue, Apr 23, 2002 at 11:58:33AM -0700, Rusty Minden wrote: Dohh! Yes I do I flubbed when doing a search using vim sorry. Still can't use su to log into root. You'll probably need to boot into single user mode (err.. if you CAN with a botched /etc/passwd), or (more likely) use a rescue disk. BTW - use vipw, not vim... It will, as the man page says, set the appropriate locks to prevent file corruption. I seem to recall it also complaining and not saving/quitting if the file got botched up. (eg, it syntax checks it before committing to disk) I could be wrong about that last part, unfortunately... :) In that case, I guess VIM is good enough. Just be CAREFUL! ;) -bill! ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Not able to log into root.
as mike pointed out to me in email, it's just better to use a pager like less. it's a good habit to get into. begin nbs [EMAIL PROTECTED] On Tue, Apr 23, 2002 at 11:58:33AM -0700, Rusty Minden wrote: Dohh! Yes I do I flubbed when doing a search using vim sorry. Still can't use su to log into root. You'll probably need to boot into single user mode (err.. if you CAN not quite -- you still need to enter a password in single user mode. with a botched /etc/passwd), or (more likely) use a rescue disk. you need to boot a rescue disk (the linux BBC or linuxcare cd's are perfect for this sort of thing. debian rescue disks will work too). then you need to manually mount the root partition read/write. then you need to change the permission on /mnt/bin/su (not on /bin/su, if that makes sense). it's just like when you forget the root password, except you'll be using chmod to change permissions instead of vim to change text between the 2nd and 3rd : in /etc/shadow. pete BTW - use vipw, not vim... It will, as the man page says, set the appropriate locks to prevent file corruption. I seem to recall it also complaining and not saving/quitting if the file got botched up. (eg, it syntax checks it before committing to disk) I could be wrong about that last part, unfortunately... :) In that case, I guess VIM is good enough. Just be CAREFUL! ;) -bill! ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Not able to log into root.
I will from now on use less and more. This is /etc/passwd root:x:0:0:root:/root:/bin/bash bin:x:1:1:bin:/bin:/bin/bash daemon:x:2:2:Daemon:/sbin:/bin/bash lp:x:4:7:Printing daemon:/var/spool/lpd:/bin/bash games:x:12:100:Games account:/var/games:/bin/bash at:x:25:25:Batch jobs daemon:/var/spool/atjobs:/bin/bash postgres:x:26:2:Postgres database admin:/var/lib/pgsql:/bin/bash mdom:x:28:28:Mailing list agent:/usr/lib/majordomo:/bin/bash wwwrun:x:30:65534:WWW daemon apache:/var/lib/wwwrun:/bin/bash squid:x:31:65534:WWW proxy squid:/var/squid:/bin/bash fax:x:33:14:Facsimile agent:/var/spool/fax:/bin/bash gnats:x:34:65534:Gnats GNU backtracking system:/usr/lib/gnats:/bin/bash adabas:x:36:100:Adabas-D database admin:/usr/lib/adabas:/bin/bash amanda:x:37:6:Amanda admin:/var/lib/amanda:/bin/bash irc:x:39:65534:IRC daemon:/usr/lib/ircd:/bin/bash ftp:x:40:2:FTP account:/usr/local/ftp:/bin/bash firewall:x:41:31:Firewall account:/var/lib/firewall:/bin/false named:x:44:44:Nameserver daemon:/var/named:/bin/bash fnet:x:49:14:FidoNet account:/var/spool/fnet:/bin/bash gdm:x:50:15:Gnome Display Manager daemon:/var/lib/gdm:/bin/bash postfix:x:51:51:Postfix daemon:/var/spool/postfix:/bin/false cyrus:x:96:12:IMAP daemon:/usr/cyrus:/bin/bash dpbox:x:61:56:DpBox account:/var/spool/dpbox:/bin/false ingres:x:62:3:Ingres database admin:/opt/tngfw/ingres:/bin/bash vscan:x:65:65534:Vscan account:/var/spool/vscan:/bin/false wnn:x:66:100:Wnn system account:/var/lib/wnn:/bin/false pop:x:67:100:POP admin:/var/lib/pop:/bin/false perforce:x:68:60:Perfoce admin:/var/lib/perforce:/bin/false sapdb:x:69:61:SAPDB demo account:/var/opt/sapdb:/bin/bash db4web:x:70:100:DB4Web account:/opt/db4web:/bin/bash nobody:x:65534:65534:nobody:/var/lib/nobody:/bin/bash rdm:x:500:100:Roland (Rusty) Minden:/home/rdm:/bin/bash man:x:13:62:Manual pages viewer:/var/cache/man:/bin/bash news:x:9:13:News system:/etc/news:/bin/bash uucp:x:10:14:Unix-to-Unix CoPy system:/etc/uucp:/bin/bash On Tuesday 23 April 2002 12:07 pm, you wrote: as mike pointed out to me in email, it's just better to use a pager like less. it's a good habit to get into. begin nbs [EMAIL PROTECTED] On Tue, Apr 23, 2002 at 11:58:33AM -0700, Rusty Minden wrote: Dohh! Yes I do I flubbed when doing a search using vim sorry. Still can't use su to log into root. You'll probably need to boot into single user mode (err.. if you CAN not quite -- you still need to enter a password in single user mode. with a botched /etc/passwd), or (more likely) use a rescue disk. you need to boot a rescue disk (the linux BBC or linuxcare cd's are perfect for this sort of thing. debian rescue disks will work too). then you need to manually mount the root partition read/write. then you need to change the permission on /mnt/bin/su (not on /bin/su, if that makes sense). it's just like when you forget the root password, except you'll be using chmod to change permissions instead of vim to change text between the 2nd and 3rd : in /etc/shadow. pete BTW - use vipw, not vim... It will, as the man page says, set the appropriate locks to prevent file corruption. I seem to recall it also complaining and not saving/quitting if the file got botched up. (eg, it syntax checks it before committing to disk) I could be wrong about that last part, unfortunately... :) In that case, I guess VIM is good enough. Just be CAREFUL! ;) -bill! ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Not able to log into root.
On Tue, Apr 23, 2002 at 02:11:33PM -0700, Peter Jay Salzman wrote: why did you post /etc/passwd? it would be more helpful if you posted the contents of /etc/shadow. Why, so we can all try to crack it for a few weeks? ;) -bill! ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Not able to log into root.
Perhaps a suid-checking script was poorly configured and chmodded the suid bit out? Did you install any security software recently? Coming into the picture recently (SOrry, did not read all of the other posts yet) some questions: Does a normal login from the console as root work? Is the only fault in when you su? The original message makes it sound like you cannot login or su. If that is the case, then there are other things to check beyond just su. -ME -BEGIN GEEK CODE BLOCK- Version: 3.12 GCS/CM$/IT$/LS$/S/O$ !d--(++) !s !a+++(-) C++$() U$(+$) P+$+++ L+++$(++) E W+++$(+) N+ o K w+$+ O-@ M+$ V-$- !PS !PE Y+ !PGP t@-(++) 5+@ X@ R- tv- b++ DI+++ D+ G--@ e+++ h(++)+ r*? z? --END GEEK CODE BLOCK-- decode: http://www.ebb.org/ungeek/ about: http://www.geekcode.com/geek.html On Tue, 23 Apr 2002, Shawn P. Neugebauer wrote: sounds good peter, but why would it change?? i'd be worried... i tried a little experiment (don't try this at home boys and girls). as a backup, i opened a root shell. then, in another shell, i changed the permissions on /bin/su to 755. when i try to su to root, i just get incorrect password (this is RH 7.x). i tried several combinations of permissions (4755, 6755, 755), owner, and group, and all either work or return incorrect password. so, changing the permissions may indeed correct the problem, but i'd wonder how it got that way. do you have any way to know that the machine has not been rooted?? shawn. On Tuesday 23 April 2002 12:01 pm, you wrote: hi rusty, off the top of my head, i would say that your su needs to be setuid root and it's not. you should have a permission of 4755 (rwsr-xr-x) on su. to verify this, i went to google groups: http://groups.google.com/advanced_group_search in with all of the words i typed: su cannot set groups the first item reads: su problem: su: cannot set groups: Operation not permitted i click on it, then click on complete thread. here's the URL: http://groups.google.com/groups?hl=enth=4dec5a92aba3e0rnum=1 it looks like all the responses to this question point to the permission problem. :-) hth, pete begin Rusty Minden [EMAIL PROTECTED] I am not able too loginto root and when I try to su into root I get this error below any ideas? rdm@cc668999-a:~ su Password: su: cannot set groups: Operation not permitted ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech
Re: [vox-tech] Not able to log into root.
hi shawn, i had the same thought myself, but didn't post it. now that you bring it up... rusty, something happened between the last time you were able to su and the time at which su stopped working. rusty, is this a woody system? if so, su belongs to the package login. the current version of login is 2902-12 (you can get this by 'dpkg -p login'). if your OS and package version number match this, check your md5sum. here's mine: 5d324ad212b2ff8f767637ac1a8071ec /bin/su pete begin Shawn P. Neugebauer [EMAIL PROTECTED] sounds good peter, but why would it change?? i'd be worried... i tried a little experiment (don't try this at home boys and girls). as a backup, i opened a root shell. then, in another shell, i changed the permissions on /bin/su to 755. when i try to su to root, i just get incorrect password (this is RH 7.x). i tried several combinations of permissions (4755, 6755, 755), owner, and group, and all either work or return incorrect password. so, changing the permissions may indeed correct the problem, but i'd wonder how it got that way. do you have any way to know that the machine has not been rooted?? shawn. ___ vox-tech mailing list [EMAIL PROTECTED] http://lists.lugod.org/mailman/listinfo/vox-tech