HPE Community
Operating System - HP-UX
1834499 Members
2536 Online
110068 Solutions
New Discussion

Lost root password

 
SOLVED
Go to solution
Jessica Nguyen
Occasional Contributor

‎07-12-2001 03:16 PM

‎07-12-2001 03:16 PM

Lost root password

If I su root, I still need password. I still can log on my account. Does it help? Please tell me how to get in the password file from a user.
0 Kudos
Reply
6 REPLIES 6
Patrick Wallek
Honored Contributor

‎07-12-2001 03:20 PM

‎07-12-2001 03:20 PM

Re: Lost root password

A regular user generally can't access the passwd file. You could try 'vi /etc/passwd' but I doubt it will let you save it.

Another option is if you have restricted SAM set up to allow other users to set up accounts. If you have this you should be able to go in and change root's passwd.
0 Kudos
Reply
someone_4
Honored Contributor

‎07-12-2001 03:43 PM

‎07-12-2001 03:43 PM

Re: Lost root password

If you check sam for a user with a user id of 0 can change passwords too. We have a "backup" root user with and id of 0. That makes it a superuser that is just as powerfull as root.

Richard
0 Kudos
Reply
Michael Tully
Honored Contributor

‎07-12-2001 04:20 PM

‎07-12-2001 04:20 PM

Re: Lost root password

Hi,

The other guys have sort of got you on the
right track. I would like add something else.

I would suggest that implement a well known
product called 'sudo' This will allow you to
secure your system so that anybody that wishes
to add, modify. or delete users can but only
has access to this.

I've attached the link for you.

http://www.courtesan.com/sudo/

Regards
Michael
Anyone for a Mutiny ?
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎07-12-2001 04:22 PM

‎07-12-2001 04:22 PM

Solution

Re: Lost root password

If you have lost the root password, there is nothing you can do as an ordinary user to reset the password. You will have to reboot the machine, interrupt the boot process and use hpux -is to enter single user mode. Remember that /usr and /var will not be mounted so once in single user mode, mount these 2 directories so you'll have access to vipw to edit the password file. If the system is trusted, you'll need to edit /tcb directory.

Regarding duplicate root ID's, this is can be a very big security and stability risk, especially if an ordinary username has the extra UID 0. From a security point of view, the first place a hacker will try to modify is a normal user into a UID 0. The other problem is when a user logs in with this non-root account name (UID 0) but has forgotten that they are root and makes a big mistake such as a recursive rm command (the infamous "rm -r * Club")

I would order the brand new HP-UX Security book from HP Press authored by Chris Wong as soon as possible.


Bill Hassell, sysadmin
Reply
Jessica Nguyen
Occasional Contributor

‎07-13-2001 08:53 AM

‎07-13-2001 08:53 AM

Re: Lost root password

I can't get to sam in order to change my user id to 0. I already reboot the system, but I don't know how to interrupt the reboot process . Please advise.
I have a retired system, and it is still functioning. I wish I can ftp the root power to my account in the new system, but I was just able to ftp the .profile only. I get the warning that I am the superuser, but I have no root power. Please advise how to ftp the root power from one system to the other.

Thanks in advance
0 Kudos
Reply
JAYAMOHAN.V.D
Occasional Advisor

‎07-13-2001 10:54 PM

‎07-13-2001 10:54 PM

Re: Lost root password

hi,
The procedure to boot the system in single user mode is as follows...
if u reboot the machine, in the console u will get a message like this
"Autoserach for boot path enabled
To override press any key with in 10 sec"
press any key at this time, u will get a question to boot from primary boot path.
you have to give y as answer. then it will ask do u want to interact with IPL, u have to answer Y.
then u will get an ISL prompt.
ISL>
in this prompt u enter the command
ISL> hpux -is
this will boot the system in single user mode.
it will not ask for the root password. now u can change the password of root by typing the command "passwd".
regards
jayamohan
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.