[SunRescue] OT: Advice on Certification

Ido Dubrawsky rescue at sunhelp.org
Sat May 5 22:32:21 CDT 2001 

--v9Ux+11Zm5mwPlX6
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable

On Fri, May 04, 2001, Bill Bradford wrote:
>
> At my interview for Broadwing, it helped that half the staff used
> sunhelp.org on a regular basis.. Then in the interview, my boss (who
> was an ex-admin himself, having been booted up to management) asked
> "okay, how would you go about getting into a system where the root
> password had been lost?"
>=20
> I laughed.  Then told him how to do it (boot off cdrom, etc).
>=20
> Its the most commonly asked question to questions at sunhelp.org. 8-)

  Another one you could try is to use the old rsh trick.  I had a box at=20
my old job at Globeset that was like that...I didn't have the root password
and my boss (the old system admin) also didn't.  I remembered that we used =
to
use rsh between boxes (mostly for CVS purposes), and...lo and behold, this =
box
trusted the primary NIS server for the root account.  Saved me from having =
to
boot off of cdrom and causing an uproar.
  You could also try using some of the nicer exploits on the box (although
I would never say this in an interview).  sadmind under Solaris 2.6  yields
root very nicely; once you do that, just grab shadow and passwd and run it
through John the Ripper...oh wait a minute, that might not be looked upon
too favorably; besides you should keep your boxes patched to the hilt...
right?... ;-)

Ido
--=20
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D
                        |Ido Dubrawsky               E-mail: idubraws at cisco=
.com
     |          |       |Network Security Engineer
    :|:        :|:      |Cisco Secure Consulting Services
   :|||:      :|||:     |Cisco Systems, Inc.
=2E:|||||||:..:|||||||:.  |Austin, TX. 78759
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D

--v9Ux+11Zm5mwPlX6
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBOvTFvm2NSFxvnJ/5AQH7DAQAz4kVy+729KtlHPjypMJ2W+2FUhZZ0i/A
24PQ9JRR0kCq45AFViTwTAbmhmrtR5J4SsRLg4mUXEpryElXwI+vcHq/hXavBsrg
87iVWXanA+4E7LCv1HJvL7YFR5XSacxVlTgzJZ0WSMSnjfmKy/S2nr48rUvMaUXM
DtM0hgbgkik=
=fxw7
-----END PGP SIGNATURE-----

--v9Ux+11Zm5mwPlX6--

More information about the rescue mailing list