HPE Community
Operating System - HP-UX
1823064 Members
3201 Online
109645 Solutions
New Discussion юеВ

'xxx' in password field for sam_exec

 
SOLVED
Go to solution
Ron Levy
Advisor

тАО09-06-2002 01:25 PM

тАО09-06-2002 01:25 PM

'xxx' in password field for sam_exec


What's the reasoning behind the 'xxx' in the password field for the 'sam_exec' account under 11.0? Is it secure? And if the goal was to be secure, why wasn't a '*' used to indicate no standard logins on that account?
Thanks,
-Ron Levy
0 Kudos
Reply
4 REPLIES 4
Ted Ellis_2
Honored Contributor

тАО09-06-2002 01:31 PM

тАО09-06-2002 01:31 PM

Solution

Re: 'xxx' in password field for sam_exec

hmmm... we run 11.0 and there is no sam_exec user on our systems. Are you a trusted system? If so, we do not use that and I would not know the answer. One thing though... xxx in the password field is just as secure as *... it is an entry that does not meet the qualifications for a properly encoded password... ie. it requires the salt and 11 characters, for a total of 13 characters to be something that could be decoded. If you want, you can always run passwd -l sam_exec to lock down the account with the normal * entry. Either way this account is not getting logged into
Reply
Craig Rants
Honored Contributor

тАО09-06-2002 01:33 PM

тАО09-06-2002 01:33 PM

Re: 'xxx' in password field for sam_exec

Are you sure that you are running 11.00. The sam_exec account is a 9.00 thing...

HP-UX release 9.0 contains some significant enhancements related to the
remote management of network security. In particular, SAM now contains
a Remote System Administration area that allows system management to
remotely administer networked systems.

Although this feature has only recently been released, preliminary
investigation has revealed the following:

When remote system administration is requested, SAM logs in to the
remote system, and creates a new account on the remote system (you
must provide the root password to the remote system to do this).

The new account is created with user name sam_exec, UID=0 and GID=1,
and is created with a copy of the root password currently used on the
remote system. This new account is used by SAM whenever logging in to
the remote system.

While not in itself a problem, this seems to be very lightly (if at
all) documented at present.

Don't know why you would need this on 11.0


GL,
C
"In theory, there is no difference between theory and practice. But, in practice, there is. " Jan L.A. van de Snepscheut
0 Kudos
Reply
Ted Ellis_2
Honored Contributor

тАО09-06-2002 01:35 PM

тАО09-06-2002 01:35 PM

Re: 'xxx' in password field for sam_exec

maybe a copied password file during a system upgrade perhaps?
0 Kudos
Reply
Michele Macintire
Advisor

тАО09-09-2002 03:33 AM

тАО09-09-2002 03:33 AM

Re: 'xxx' in password field for sam_exec

We have a 10.20 server that was used as the primary place to lauch sam for several other servers of that application family. The other 4 servers associated with it are 11.00.

When, in SAM, you choose "Run SAM on Remote Systems" and then use the next screen's "Action" drop down list to "Add System", it will add the sam_exec account to the system you are choosing to add. This feature is still available in 10.20, 11.00 and 11.11 (11i).

Our 11.00 servers are in trusted mode, so the password field does show up as an '*' for sam_exec. The 10.20 server has 'xxx' as the password. I'm assuming, although I have no documentation to prove it, that the 'xxx' was just a way to lock the account so that no one could log in using that account.

Hope that helps!
Michele
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.