HPE Community
Operating System - HP-UX
1825730 Members
2617 Online
109687 Solutions
New Discussion

root password issue

 
SOLVED
Go to solution
Charles McCary
Valued Contributor

‎06-22-2009 08:37 AM

‎06-22-2009 08:37 AM

root password issue

Group,

here's the scenario:

1) We are able to remsh to the system, so we can get to a root prompt.

2) We want to change the root password, but we don't know the OLD password.

3) HPUX 11.11 trusted system.

Thoughts:

Can we simply?
erase the u_pwd field in /tcb/files/auth/r/root


0 Kudos
11 REPLIES 11
Patrick Wallek
Honored Contributor

‎06-22-2009 08:40 AM

‎06-22-2009 08:40 AM

Re: root password issue

Yes.

To have a null password the line needs to look like:

:u_pwd=:\
0 Kudos
Charles McCary
Valued Contributor

‎06-22-2009 08:42 AM

‎06-22-2009 08:42 AM

Re: root password issue

Patrick,

thanks...no need to go to single user mode right?
0 Kudos
Vivek Bhatia
Trusted Contributor

‎06-22-2009 08:44 AM

‎06-22-2009 08:44 AM

Re: root password issue

Hi Charles,

Yes you can do that by editing the file.

/tcb/files/auth/r/root

Remove the encrypted content from mentioned between.

:u_pwd=:\

And no need to go to single user mode.

Regards
Vivek
0 Kudos
Vivek Bhatia
Trusted Contributor

‎06-22-2009 08:46 AM

‎06-22-2009 08:46 AM

Re: root password issue

For Example , if you have a entry like this.

:u_pwd=XXXXX:\

Then Remove XXXXX (encrypted content from the file) and that will allow you to login with empty password.

Vivek
0 Kudos
OldSchool
Honored Contributor

‎06-22-2009 09:10 AM

‎06-22-2009 09:10 AM

Re: root password issue

"Patrick,

thanks...no need to go to single user mode right?"

how do you propose to login as root to make the change then?
0 Kudos
Charles McCary
Valued Contributor

‎06-22-2009 09:11 AM

‎06-22-2009 09:11 AM

Re: root password issue

See #1 in original question...we have root access, just not the old password. thanks.
0 Kudos
Charles McCary
Valued Contributor

‎06-22-2009 09:16 AM

‎06-22-2009 09:16 AM

Re: root password issue

I guess my main concern is doing this "on the fly" in mulit-user mode. I don't want something to get corrupted.
0 Kudos
OldSchool
Honored Contributor

‎06-22-2009 09:27 AM

‎06-22-2009 09:27 AM

Re: root password issue

ah....missed that bit...yes, you can do it in multiuser. once you "unset" it as described above, simply log in and set it to whatever new value is desired.
0 Kudos
Robert-Jan Goossens_1
Honored Contributor

‎06-22-2009 09:28 AM

‎06-22-2009 09:28 AM

Solution

Re: root password issue

Hi Charles,

Actually if you have root access (remsh) you can do this on the fly.

# vi /tcb/files/auth/r/root

Remove the password hashed field and save.

# passwd root

Regards,
Robert-Jan
0 Kudos
doug hosking
Esteemed Contributor

‎06-22-2009 09:06 PM

‎06-22-2009 09:06 PM

Re: root password issue

Rather than bypassing the protections of normal tools by directly editing the file, I'd be tempted to first try resetting the password with /sbin/passwd (not /usr/bin/passwd) after doing the remsh (or from a single user mode shell, if necessary). If I remember right (don't have access to a system right now to check), this will not ask for the old password.

Permissions on this executable on currently supported HP-UX versions are set to not allow non-root users to run it. Since root COULD directly edit the file and achieve the same result without knowing the password, there is no reason for /sbin/passwd to ask for it. This is likely a much cleaner way of dealing with the issue you face.


0 Kudos
Charles McCary
Valued Contributor

‎06-23-2009 04:45 AM

‎06-23-2009 04:45 AM

Re: root password issue

Group, the solution of editing the root file under the tcb tree worked fine for us.

I did try the /sbin/passwd in one of our test environments and it did prompt for the old password.

Thanks everyone
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.