fedora core 1 password

Posted on 2006-04-29
Last Modified: 2013-12-06
I have a server and sometimes I give the root pass to friends,
so that they can help me install new things, but I really dont want
any of them to maybe steal my machine and change the root pass
is there anyway of creating something that can send me the
current password of my machine to my email?
Question by:aplelois
    LVL 20

    Expert Comment

    Bo, not really.

    But instead of giving out the root password, why not investigate/use sudo instead? That would be mych better... Not foolproof, but better.

    -- Glenn
    LVL 16

    Expert Comment


    I would strongly recommend giving the user SUDO access, anyways if you dont want to give sudo access you could
    issue the following commands so he cant change the root password:

    chattr +i /etc/passwd
    chattr +i /etc/shadow

    This will make the /etc/passwd and /etc/shadow file immunable and will stop him editing them unless he

    chattr -i /etc/shadow

    but he might not noticed the immune flag :)
    LVL 20

    Expert Comment

    Security byobscurity.... how ... qaint:-).
    I really don't think that is a good idea.

    Either you trust your friend enough to let him/her have the password, or you don't. If you don't, you should look at the (meager) options .... meager in that there aren't a whole lot of options _other_ than sudo.
    Sudo can be made to be safe.... you can for example limit the "root access" to only a few commands for the otherwise unpriviledged user.

    If you don't trust your friend to have root access, then how can you trust your friend to install software?
    I wouldn't, but then.... Maybe I'm paranoid:-).

    -- Glenn
    LVL 20

    Expert Comment

    Two things:
    > Security byobscurity.... how ... qaint:-).
    should read
    > "Security by obscurity".... how ... quaint:-).

    ... and start learning about sudo (assuming you have it installed) via "man sudo" or looking here:

    -- Glenn
    LVL 20

    Accepted Solution

    And a third:
    The reason I say "no, not really" (yeah, "Bo,..." ... yet another typo:-) is that the password is only stored in a (hopefully) non-reversible, unambiguous format... On most modern Linuces, that is an MD5-hash. Even though it _might_ be cracked, it should not be easily reversible... And the MD5-hash is such, indeed.
    So you have no way of retreiving the password, once it is encoded in the hash.
    Authentication is accomplished by taking the "salt" and the cleartext you enter, repeting the encoding and finally comparing the result with the stored ciphertext... If they match, OK, if not ....:-)
    So you really cannot retreive the password and mail it to yourself, not when it concerns this.

    Hope you appreciate the matter more now.

    -- Glenn

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    Introduction We as admins face situation where we need to redirect websites to another. This may be required as a part of an upgrade keeping the old URL but website should be served from new URL. This document would brief you on different ways ca…
    The purpose of this article is to demonstrate how we can use conditional statements using Python.
    Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
    Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    9 Experts available now in Live!

    Get 1:1 Help Now