Re: hack that changes root to Root

From: james (jamesh@cybermesa.com)
Date: 02/26/02 

From: "james" <jamesh@cybermesa.com>
To: "Yotam Rubin" <yotam@makif.omer.k12.il>
Date: Tue, 26 Feb 2002 15:17:34 -0700

rootXXXXXXXXXXXXXdaemon:0:0:System Administrator:/root:/bin/csh

This is from the command vipw, and "root" was "Root", changed all 'root'
ownership changed to Root.
Only 3 people know roots passwd, and a look at their keystaoke history
indicates none changed root to Root

----- Original Message -----
From: "Yotam Rubin" <yotam@makif.omer.k12.il>
To: <incidents@securityfocus.com>
Sent: Tuesday, February 26, 2002 12:17 PM
Subject: Re: hack that changes root to Root

> On Mon, Feb 25, 2002 at 05:49:05PM -0700, James wrote:
> > Anyone know of a hack that changes root (user name) to Root ?
>
> The login name or the real name? The former is abstractly achieved by
> "cat /etc/{passwd,shadow} | sed 's/^root:/Root/'". This may break some
> scripts you currently use, and well, the security gain is insignificant.
>
> Regards, Yotam Rubin
>
> >
> > James Edwards
> > jamesh@cybermesa.com
> > At the Santa Fe Office: Internet at Cyber Mesa
> > Store hours: 9-6 Monday through Friday
> > Phone support 365 days till 10 pm via the Santa Fe office:
> > 505-988-9200 or Toll Free: 888-988-2700
> >
> >
> >
>
> -------------------------------------------------------------------------- 

--
> > This list is provided by the SecurityFocus ARIS analyzer service.
> > For more information on this free incident handling, management
> > and tracking system please see: http://aris.securityfocus.com
> >
>
> --------------------------------------------------------------------------
--
> This list is provided by the SecurityFocus ARIS analyzer service.
> For more information on this free incident handling, management
> and tracking system please see: http://aris.securityfocus.com
>
>

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Relevant Pages

  • Re: Plywood from China and other crap from China
    ... Don't disagree but I would suggest that consistently bad management is ... clusterfuck like the US economy, so I will ignore that this time. ... management strategy was the root cause for that. ... be more secure in this environment. ...
    (rec.woodworking)
  • Re: NASA Astronaut on Columbia Repair (and others)
    ... they didn't think an escape system was necessary. ... "Root Cause Analysis Overview ... · Establish common terminology in the NASA community to facilitate ... Any operational or management structural entity that exerts control ...
    (sci.space.history)
  • Re: hack that changes root to Root
    ... first line where the cursor starts (like "root" in etc/passwd). ... >For more information on this free incident handling, management ... >and tracking system please see: http://aris.securityfocus.com ...
    (Incidents)
  • Re: Solaris 9 Volume Manager vx. Veritas VM
    ... > much simpler, supported, and better understood way to manage your root disks. ... > Leave Veritas for enterprise data management, ... with all rootdg volumes visible in VTOC as disk ...
    (comp.unix.solaris)
  • Re: Apache 1.3.XX
    ... > apache isn't/shouldn't be running as root. ... Apache runs as root. ... It uses a root process to bind to port 80 and to spawn ... This list is provided by the SecurityFocus ARIS analyzer service. ...
    (Incidents)