troubleshooting Question

Cracking Linux Security w/ Physical Access

Avatar of Black0x2
Black0x2 asked on
Linux Security
6 Comments2 Solutions366 ViewsLast Modified:
Hi All,

This is kind of urgent. A customer of mine has a firewall (an Anti-SPAM Firewall) based on a
1U form factor PC, with Linux installed and then I believe its running a custom flavor of SPAM
Assasin as well as some proprietory software on it (although not sure, some of it is my idea
and the rest is what I heard from the customer). Since the box is quite old and was not
being used for quite some years, the customer doesnt have any technical details on it. Searching
the web got me the details for it, but the company that made it (based out of india) is asking for
a maintenance contract as well as a one-time-cost to factory reset the device, and that isnt an
available option yet as customer is unwilling to do this.

Now what I need to do is figure out what flavor of Linux is it running as well as a way to reset
the root password on the box, so atleast the box can start working, not quite sure of the rest
of the stuff, but if I could get the box to use RBL's plus if it has customer filtering, would sort
out a lot of stuff...

The Linux version installed is hardened already by a PRO. Root password is unknown as well
as LILO doesnt give a boot prompt, rather directly jumps on booting the configured kernel.
I could get the lilo version, and will update later in this post. I tried by opening up the box
and taking out the HDD. I put the HDD in a USB Bay, and tried to mount it using Paragon
Mount Everything Pro - The fs I found then was XFS, which is not supported by PMEP. Now
I have Slackware / Debian insall cds, tried installing a CD drive to the firewall and booting
from those CDs, but both dont support XFS on the rescue prompt.

Now how do I go about mounting the XFS filesystem under any flavor of freely available
Linux distro or Rescue / Recovery CDs or under windows, and then onwards, since the
flavor on the box is unknown, how to go about resetting the root Password. and finding
out where the boot loader is installed etc, and what other users exist on the box. Since
this is a bit urgent, assigning this 500 points, and whoever answers the question correctly
with detailed and step-wise instructions gets an A grade and the points.
Join our community to see this answer!
Unlock 2 Answers and 6 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 2 Answers and 6 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros