Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Copying The shadow , and the password file !

Status
Not open for further replies.
netwalker1

netwalker1

Programmer
Feb 5, 2000
1,241
EG
Dear All :
I have 2 similar Redhat Linux machines ..
I did copy the Group , Password , Shadow , gshadow files from one of them to the other one ..

The problem is that I can't login to the 2nd one anymore !
Any help ...
How can I solve this ,..

Mohamed Farid
[green]Know Me No Pain , No Me Know Pain !!![/green]
CCNP,CCSP,CCA,MCSE,MCSA
 
Sort by date Sort by votes
OK ..
How Can I do this in the future ...


Mohamed Farid
[green]Know Me No Pain , No Me Know Pain !!![/green]
CCNP,CCSP,CCA,MCSE,MCSA
 
Upvote 0 Downvote
I don't know why you can't do it, I do it all the time.

Unless one box is configed to use a different password scheme than the other, e.g. md5 vs. crypt.
 
Upvote 0 Downvote
Reason #1

Box 1 == hacked user in shadow/passwd
Box 2 == new, not hacked
copy Box 1 shadow/passwd -> Box 2
Box 2 == hacked

Reason #2
Different OS, or crypt (see Eric's post above)(

Reason #3
Terrible security practice

Reason #4
You have potentially made a copy (.zip or .tar.gz) of your passwd from Box #1 and have made it "grabbable" from the local box, the new box, or the network in between. Depending upon your circumstances this is potentially a BIG DEALtm

 
Upvote 0 Downvote
I even copied a SCO Unixware passwd/shadow/group to a RH box and it worked fine.
 
Upvote 0 Downvote
I don't really agree with the assessment that it's a security risk.

#1 most exploits aren't the result of cracking the password, so moving an encrypted password to another machine isn't really an issue to me.

#4 if you now your tools and know they aren't making an intermediate copy, there's no risk

 
Upvote 0 Downvote
I don't know ,,,
May be the 2nd BOX has special security issue or something ...

the reason Which I made this is that I am updating my servers.. from small servers to huge ones ..
We need to do this without changing the 600 users' passwords !

Anyway , I did a ghost for the Servers , and It works fine now after updating the drivers , and resetting the environment variables ..

Thanks ,,,


Mohamed Farid
[green]Know Me No Pain , No Me Know Pain !!![/green]
CCNP,CCSP,CCA,MCSE,MCSA
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

spamjim
  • Locked
  • Question
Sorting out NTFS filesystem issues
Replies
0
Views
264
spamjim
spamjim
SamBones
  • Locked
  • Question
CentOS 7 and Putty
Replies
2
Views
265
SamBones
SamBones
KannaChan
  • Locked
  • Question
TLS1.2 and TLS1.0 proxy in same Virtualhost
Replies
1
Views
242
ChrisHirst
ChrisHirst
ady2012
  • Locked
  • Question
Change the service sequences started on boot using centos 6
Replies
0
Views
179
ady2012
ady2012
eliogabalus
  • Locked
  • Question
the modem is the "guilty"?
Replies
1
Views
152
eliogabalus
eliogabalus

Part and Inventory Search

Sponsor

Back
Top