Menu
▾
▴
Re: [webmin-l] Regarding "pre encrypted" passwords
|
From: Jamie C. <jca...@we...> - 2006-05-25 17:00:55
|
On 25/May/2006 04:36 Frank wrote .. <blockquote type=3D"cite"> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006">Hi all,</span></font></div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006"></span></font>=A0</div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006">This must be the single most ridiculous situation I found myself in lately, and maybe someone can help me on this one.</span></font></div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006"></span></font>=A0</div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006">By mistake, I changed the root password using plain text in the "pre encrypted" password field, thus locking myself out.=A0 My system is very secure now, to say the least...</span></font></div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006"></span></font>=A0</div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006">I do not wish to retreive the password (it's probably in some form of hash), but is there a way to make use of my human readable password to correspond to the way it is now stored on the system?=A0 I've noticed that the=A0pre encrypted field=A0had been hashed upon saving the=A0root user profile.</span></font></div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006"></span></font>=A0</div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006">Any help on that would be most welcome, to say the least.</span></font></div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006"></span></font>=A0</div> <div><font size=3D"2" face=3D"Arial"><span class=3D"250421709-25052006">Frank=A0=A0</span></font></div></blockquote>I think I see what you are looking for, but unfortunately it is not possible. To work out which plain-text password matches a particular hash would require a really slow brute-force check of all possible passwords .. of which there are billions!<br /><br />If your root password is lost, the only solution is to boot the machine from a CD, mount the / filesystem manually, and edit /etc/shadow to blank out the password.<br /><br />=A0- Jamie<br /><br /> |
