more weird stuff - ChameLAN 100-s

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Lawrence LeMay <lemay_at_cs.umn.edu>
Date: Sun May 21 13:33:56 2000

>
> I had a similar problem with my Sun machine. What I did was physically mount
> the foreign drive on my clone running redhat. I knew what the solaris
> filesystem was and so was able to instruct redhat to mount it (read only).
> Then a friend in ClassicComp turned me on to a program called 'John the
> Ripper'. I copied the /etc/passwd and /etc/shadow files to my clones' drive
> and ran the program to crack the passwords. The root password was not
> crackable but most others were. As the clock on my Sparcstation had a dead
> batt, the dateas irrational for the user I logged on as as that user had not
> yet been created.... This caused solaris to drop me to a root prompt at which
> time I was able to change the root pw and have full system access in the proper
> way with the proper date.
>

Hmm, you must have been lucky, and the system didnt have its EEPROM security
features turned on. The standard way to hack VERY old Sun's, used to
be to boot the computer with a hardware fault that the operating system
couldnt solve and which it would then drop you into local root, and then
fix the hardware problem. Traditionally, one would unplug the keyboard
before powering on the system ;) The fix for this hardware problem is
left as an extra credit problem for you to figure out... ;)

-Lawrence LeMay
Received on Sun May 21 2000 - 13:33:56 BST

This archive was generated by hypermail 2.3.0 : Fri Oct 10 2014 - 23:33:09 BST