Computer Security, the LordB way
The information found on this page is for educational purposes ONLY.
Do not try ANYTHING unless you are a sysadmin or get permission from your sysadmin!
Unix password cracking
Note that Linux is a version of UNIX and some of the methods below will work on other versions of UNIX too (sun/solaris, hp-ux...).
Step 1, get root
A script that checks for some
common Linux holes, the exploits can be found here. Update the script with more holes as you find them...
for Linux. Use to scan ports and MUCH more...
- stay Alert
Step 2, keeping root
When you get root, install a backdoor
replacement for /bin/login that allows use of a "magic" password
replacement for the passwd command that logs all password changes
protected SUID root program, use this instead of a SUID root /bin/sh
Got these from Dimension7
Allmost everything I intended to say here has allready been said at the Nomad Mobile Research Centre
Last updated 1997-05-18