Hosting Provided By

Re: Root password changed

From: Lisa Casey <lisa(at)jellico.net>
Date: Tue Jan 07 2003 - 14:36:45 EST

Hi,

This may be too simplistic of an answer, but it actually happened here. We are an ISP, and one of my employees went to change an users password while she was su'ed to root, but she neglected to specify the customers username. Instead she typed passwd then the new password. Sure enough, she changed the root password instead of the customers password. Could you have been changing a user password on the system and inadvertantly have changed the root password instead?

Lisa Casey
Webmaster & SysAdmin
Netlink 2000, Inc.
lisa@jellico.net

Original Message ----- From: "RCS" <rcs@flashwave.com> To: <incidents@securityfocus.com> Sent: Friday, January 03, 2003 11:01 PM Subject: Root password changed

> I have no idea how the root password on my FreeBSD 4.0 system was =

--

> This list is provided by the SecurityFocus ARIS analyzer service.




----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: 
http://aris.securityfocus.com

Received on Tue Jan 7 17:20:01 2003

This message: [ Message body ]
Next message: Sverre H. Huseby: "Re: /sumthin Revisited"
Previous message: Johnson, April: "Possible google hack"
In reply to: RCS: "Root password changed"
In reply to Joe Kattner: "Re: Root password changed"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:55 EDT