Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 667
  • Last Modified:

No password prompt... Can't login...

My server no longer prompts me for a password when I try to login, neither from the console, or by telnet.  All of the services seem to still be working (FTP, HTTP, DNS, etc.), but I cannot login.  I type in my username at the login prompt, then hit enter.  The cursor advances to the next line, but the password promt never appears for me to complete login.  I've never been locked out of a linux box before, and I've been using Linux since 1994.  I am a bit concerned, since this box is in production as the main DNS server for my company.  Any help will be greatly appreciated.  Thanks beforehand.

-JacobC
0
sigmund
Asked:
sigmund
1 Solution
 
jlevieCommented:
Well something is certainly hosed up. Have you rebooted the system and does the problem persist across a reboot? Has anything been installed or upgraded recently (like anything that would change any of the shared libraries)? Can you get into the system from a single user boot ("linux single" at the Lilo prompt). In single user mode does /etc/passwd & /etc/shadow look correct?
0
 
linuxwranglerCommented:
Is the result the same if you try a different virtual terminal on the console?
0
 
ax052300Commented:
What does your /etc/inittab say?  You should have a bunch of lines in there in the form:

1:2345:respawn:/sbin/mingetty tty1

Which means: for runlevels 2,3,4 and 5 make sure that there is always a mingetty running on tty1.

If not, add at least one (for tty1), run 'init q' to activate the changes and then see if that helped.  Sounds like you will need to do this from a 'linux single' reboot as mentioned above.

What message do you get when trying to telnet in?

Consider the fact that you may have been hacked.
0
Restore individual SQL databases with ease

Veeam Explorer for Microsoft SQL Server delivers an easy-to-use, wizard-driven interface for restoring your databases from a backup. No expert SQL background required. Web interface provides a complete view of all available SQL databases to simplify the recovery of lost database

 
claycarpenterCommented:
Remember that all bind version below 8.2.2 p-5 have bugs/holes that allow attackers to easily gain root access.  You should seriously consider the possibility that you have been hacked.  Of course, if you are able to resolve this problem, and it does not look like you have been hacked, definitely upgrade to the latest version of bind.
0
 
sigmundAuthor Commented:
I did login in single user mode.  inittab, passwd, and shadow all "look" fine.  However, regarding the possible hacking, I found that the /var/log directory is missing... The first thing that I though of, when the whole thing started, was that I was hacked.  However, this domain had only been up for a few days, so I figured that something had just gone haywire.  To answer the other questions:  I the problem persists on all virtual consoles as well as telnet.  I can still FTP into the box, but Apache seems to be down now (probably has to do with the log directory being missing).  Any other ideas?  Thanks again,

-JacobC
0
 
davidmwilliamsCommented:
Have all your file systems been mounted?

Try using

    mount -a
    df

to check - if /var/log is missing, maybe one of your disks is damaged and this is the problem?
0
 
randyhallCommented:
Sounds like getty is working, just that login is *not* working properly. Do a find on login. To wit:

find / -name 'login' -print

and make sure that the program is still there...

I'm thinking you've been hacked, but I wouldn't count out a severe HDD failure, especially if /var is on its own partition/disk...

Cheers!
0
 
jlevieCommented:
"login" requires access to wtmp, which resides in the /var/log directory. If that whole dir is gone, then wtmp is gone and login would hang.

Personally, I think you may have been hacked and I wouldn't trust anything on the system unless I could verify each and every executable and config file. It really would be easiest to just save the "local data" and rebuild. Oh yeah, a good firewall ought to be pretty high on your list of "to do's".
0
 
sigmundAuthor Commented:
Comment accepted as answer
0
 
sigmundAuthor Commented:
Thanks!  That is what I was looking for:  why login wasn't working...  I guess that the key was discovering that /var/log wasn't there.  Anyway, thanks go out to everyone that gave input!

-JacobC
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now