[Arm-netbook] root hacked
JLB
j at twu.net
Fri Feb 19 01:14:40 GMT 2010
Very nice. I'm still running 'john'; it might be useful to know what the
'stock' root password is for this doober.
On Fri, 19 Feb 2010, Jon Ervine wrote:
> On 19 February 2010 04:21, JLB <j at twu.net> wrote:
>
>> Sweet! What was the backdoor? Adding midfun to sudoers?
>>
>
> There is no sudo/sudoers on this netbook. This works very sweetly. What I
> did was copy the existing passwd file, and modified the root password entry
> to 'something I knew' in this copy. The original /sbin/udevd I backed up and
> then created a new /sbin/udevd which was a shell script to copy my edited
> passwd file to /etc and also call my backed up original /sbin/udevd with the
> '-d' argument.
>
> Worked like a champ. I'm sure there are other, more elegant ways of getting
> a backdoor too ....
>
> Many kudos to Oliver for spotting that! Now the fun can really start with
> root access to this little system!
>
> Jon (who has also stopped wasting CPU cycles on john (was up to 42 hours by
> that stage)
>
More information about the Arm-netbook
mailing list