@RetroShinigami More like. "How to login as single user.. default root"

HAHAHA thats called Single User Mode children.

open cat /etc/shadow then joe /etc/shadow

mount the other Partition whicht you have the passwort in a new window.

then change the unknown password with a known password in joe.

so easy ! lol

do some one know how I can krack a windows password ?

@sonofMegaAlexandros Not that easy when all the passwords are salt encrypted. you can just single user it and "# passwd" it then reboot and login as root or change the run level to 3 for multi user mode or 4 for x11

@sonofMegaAlexandros Ironically enough there is a specialized Linux tool used for resetting Winblows passwords. All you need to do is boot, select installation and set a new password.

*cough (sudo passwd)

FAIL. this is baby shit. coldboot with a ubuntu live cd.

@hrcc9 Not needed.. so your comment is a fail a pone itself.

So thats why on my laptop a BIOS password is set ;)

@morgulbrut

To avoid that you need a GRUB password a BOIS passwd won't help

@suyashr2 He might have thought about setting computer password in BIOS. Toshiba laptops have ability to set HDD password so even if you move HDD to another computer you can't access it which is great. :)

@TheMeanEYE Not ture. All it takes is a change of the master boot record and BAM no password

@LiezerZero Like I said, password protection is on HDD itself, moving HDD out or doing whatever won't help. HDD won't turn on unless proper password is provided. Only thing you can do with Toshiba protected HDDs is to call their tech support and prove you are the owner of laptop. Besides, you can access any computer you want if you have physical access to it. If someone really cared about his data on computer he should use cryptfs. This is not hacking, this is recovery tutorial 101.

Not really hacking, but a cool trick anyway. For those that lose their root password I suppose.

HACKING?!??? LOL! Any moron with even a month of Linux/Unix exposure can do this. Besides, I was cutting my teeth on Unix long before Linux got started - everything from shell prompt.

Sorry this doesn't work on my gentoo laptop.

I don't even see the grub menu. It boots directly into the OS. :-)

@autonomous2010 hold shift when booting

@malik932008 That only works for grub 2. I have grub legacy and even ESC doesn't work.

@autonomous2010 i remember i used it with grub legacy

@malik932008 I will try it again once I get my gentoo box set up again.

Do people even understand that hacking is also changing code...

(-_-)> Everybody know that ...

try that on a secure box

Changing the kernel parameters in Grub isn't hacking. Fail.

I have the grub bootloader set up so it doesn't show up and the first choice is always the one immediately booted.

This of course CAN be changed but changing it would require being able to log in as root.

Besides that, this isn't hacking. Its in the manual.

pretty well, hahaha...

Next step: Denial Of Service by using a hammer on the hard disk.

@voiser  good one, hahaha

@niggrfack i bought windows, it was shit.

LOL at you.

I have 3 copies of Windows 7, 4 copies of XP, and yet Linux is better than all of them.

noob

lol u call thise hacking? lololol..give me ur id, i will rename you, when u wake up u will be mr.Jons

This doesn't work with every distribution. Many distros have fixed issues like this and for example, sudo rm -rf /

@Arkblu Even with root access "sudo rm -R /" just says access denied.

This is lame. You should post a rootkit tutorial lol.

You wouldnt be able to do this unless you had physical or kvm/IPMI access to the machine.

Grub lässt sich mit einem Passwort absichern. Damit ist das hier nur möglich, wenn man das Passwort weiss.

blödsinn, das kannst du mit jeder live cd auch machen, musste dich nur entsprechend ins debian chrooten. bei ubuntu gehts sogar noch einfacher, da lässt sich ne "rettungsshell" starten in der man dann gleich aufm root prompt landet. bei mac os ist es ähnlich einfach.

Bei meiner Aussage hab ich vorausgesetzt, das nur das booten von Festplatte erlaubt ist.

and i thought linux was secure O.o! oh wait you have to be right in front of it for it to work!

A PC you can sit in front of is NEVER secure. There are boot CDs et cetera...

you can secure GRUB against this, but you never can secure a machine you can access.

You could also connect to the hard disk the root partition is on and run a chroot, then doing the passwd thing...

and so on.

Nice trick this, but this kind of "insecurity" is nothing brand new.

umm if you say that that applies to all computers starting from ABACUS to IBM ROADRUNNER super computer!

no matter what does hacker and hacking means, linux is secure, and its only enemy is the linux-installer disc (and as we can now see, the unpassworded grub). But how can you find anything in a directory, which is chmodded for only root to see/modify, and where's a primeencrypted grub password primeencrypted root password and a primeencrypted ext3/4 partition is working?

People these days use the word Hacker incorrectly. originally hackers were a kind of programmer usually working under some kind of unix-like system. they were the ones who brought up and maintained the internet when it was still young. Then a group of "bad guys" who should be called: "crackers", and "black hats" were breaking into servers and getting all the attention. They called themselves hackers and as a result, the media and every other idiot on this planet incorrectly uses the term hacker.

Hacking is writing programs without a plan.

I learned this during my CS Degree. That is the only definition that computer literate people use.

If you want to talk about illegally accessing a mainframe - then state that - it's not called hacking though. I've already explained to you what that is...

lol wtf? ..

This is pathetic

NOT FUCKING HACKING!!! this is 101 computer basics.. comes with every linux manual -__-

i agree

but but what if he doesnt have installed bash?

thats why you gotta use the -s line at the end of the kernel to boot as a single user(root)

sh

if they dont have that then idk how the system even works

i dont understand your point.

interestingfact: sh in debian is only a hard link to bash.

usually a linux system always includes bash so i dont see how any linux computer that works dosent have bash

its bad practice like putting in a POSIX script bash as the interpeter instead of sh

normally it woldn matter anyway but makes it alot more portable.

anyways i use bash,zsh and ksh.

but all my scripts are in posix for portable ends.

lol

Hacking? Maybe for ubuntu kids it's hacking

The definition of hacking is to get access to something you aren't allowed to :D so it is a kind of hack :p but it's local, so not funny :p

No, that is cracking. Real hacking is defined by ESR at catb(dot)org

Besides its not even real cracking, it is a local, not remote system that you have permission to access.

There are different definitions for hacking. It can be classified as modification to software that is allowed or not, modifying one's system, or gaining unauthorized access to another system.

Teach me your ways love guru

Guru! Nice job

If you have direct access to the console you can do anything.. windows or linux alike.

There ARE methods however if you do want a secured console!

You can encrypt your entire disk, for instance.. Can't even get to grub without the proper password. Could rip the entire disk out slap it in another computer and it wouldn't do you any good.

WOW that was hacking. . . -.-

This is built into GRUB by design, it has nothing to do with hacking. A more realistic title might be "Changing a Forgotten Root Password on Debian."

wow nothing new! lol

all you did was modify GRUB to enter into single user mode WOOOOOOOOO haaaaa lol

now what would you do with a grub loader that had an hashed password access??

Use liveCD to delete/overwrite the hash

excellent point but what if you have access to a BIOS password protected system with out the option to clear the CMOS? And you are unable to remove the drive and attach it to another system because it would take you hours and hours to crack the algorithm? LOL

cant do that with an encrypted hard drive

oh, man... With physical acces there's no problem, to got root acces. You can simply put LiveCD and all kind of computer will be your. Am I right?

oooohh noobie man!

Basic Linux tutorials teach how to do this. After all, passwords can't protect you if someone is in the room with your machine.

Usually you dont have physical access to the box. :)

what direction do i go in to start teaching myself to hack?

Physical Access = Root Access (this isn't hacking)

quote

I don't really understand how this is supposed to be hacking. He did just change the GRUB bootloader settings, that's not hacking. Ofcourse you can do that if you can physically access the computer, EXCEPT that usually GRUB is password protected. You can't change the GRUB settings if you don't know the password.

And if you password protect the bios and disable booting from floppy, cd/dvd, usb-media, network etc then it's even harder to "hack".

Where does booting removable storage devices, and GRUB commands meet? Lolz.

EMZ=]

"Where does booting removable storage devices, and GRUB commands meet?"

I did not say they do. I just meant that if you disable booting from removable devices then nonone can boot from them. If you can boot using eg. floppy or cd, then you can modify GRUB on harddisk even if GRUB is password protected.

Lol, it just seemed a bit un-related to what you were replying to. But, y'ah, you're right.

EMZ=]

When you boot from other devices and mount the bootable partition for changing GRUB's settings

was this suppose to be entering the system on to single level mode and changing the passwd ??

You have forgotten one VERY IMPORTANT thing. ALL SERVERS, which are not kept in physically restricted areas ALWAYS have a GRUB BOOTLOADER PASSWORD. And there is NO WAY to bypass the bootloader password, without which, the system won't boot!

The runlevel S/s is used when due to some reason, you need to debug/maintain or use the system without the 'inittab' file being read. It has a practical utility, that is why it is there. This is by now standards, a hack!

Yep thats the way to do it.

It's such a pity that anyone with access to your PC can hack you, but at least you can have encryption.

This isn't realy hacking seen as your just using the bootloader to bring up a root shell.

Anyone with physical access to the machine can get root.

Ummm but this is not and if is considered a hack is not Usefull is we are thinking fuck the account of a Linux Server, simple, because you need a psisical access to do it right, and that is a difficult, and just to get root account, i know is root, but theres another ways to get it without entering into a place.

Its hacking your own cpu ... Dont forget the password n you wont have to go through the whole "Rebooting" process. Cracking another Linux box from the place you sit would be nice to see though. =)

thank you i though i was gonna have to reinstall linux on laptop so i could get root

=) awesome :)

nu prea am inteles ce a vrut sa faca.....

a schimbat parola de la root din GRUB

Hehe....

funny

this is not a hack, it is a common known way of resetting a root password in case you forgot it.

I think restarting a server would cause enough alarm to get caught.

Is not difficult to block lilo or grub xP

nice

unless I'm mistaken...that looks alot like a sneaky way to get into single user mode

This AND all techniques of getting the linux pass from most distro's has been fixed. nice find though.

i guess we can restart using a rescue CD, then chroot and change pass :)

however, most servers dont allow physical access like this :)

yea most of what needs to be said already has, but this is a known work around, and besides its linux, its designed so that you can get around your pass with ease, but to fit in with the other comments, i'll say works like kernal, and stack, err err heres a good one, Grub loader, becuase it couldn't be a hardcore geek post with out the Mighty grub. .h

yeah but it would be nice if you write on which distr(kernel?). this works and on which it isn't...

debian gnu/linux kernel 2.6.8-2-386