Re: [vox] What happens internally to Linux when it is in password limbo?

To: vox@lists.lugoMAPSd.org
Subject: Re: [vox] What happens internally to Linux when it is in password limbo?
From: Samuel Merritt <snmMAPSerritt@ucdavis.edu>
Date: Fri, 15 Mar 2002 17:14:44 -0800
Delivered-to: lugod@livepenguin.com
Delivered-to: vox@livepenguin.com
In-reply-to: <001501c1cc55$086c8260$2600a8c0@a>
List-help: <mailto:vox-request@lists.lugod.org?subject=help>
List-id: lugod's free for all mailing list <vox.lists.lugod.org>
List-post: <mailto:vox@lists.lugod.org>
List-subscribe: <http://lists.lugod.org/mailman/listinfo/vox>,<mailto:vox-request@lists.lugod.org?subject=subscribe>
List-unsubscribe: <http://lists.lugod.org/mailman/listinfo/vox>,<mailto:vox-request@lists.lugod.org?subject=unsubscribe>
References: <001501c1cc55$086c8260$2600a8c0@a>
Reply-to: vox@lists.luMAPSgod.org
Sender: voxMAPS-admin@lists.lugod.org
User-agent: Mutt/1.3.25i

On Fri, Mar 15, 2002 at 11:10:12AM -0800, Danny Webster wrote:
>     The sendmail on a 200MHz recently slowed to a crawl on a Red Hat 6.1
> system.  Authorization took up to 3 minutes on machines running Outlook
> Express.  The day after I changed the root password from an easily guessable
> password, the machine had all the speed you could hope for.  But since I
> have not yet restarted any of the services or rebooted, the old password
> still works even though through linuxconf the password has been changed.
> Does this make any sense to anyone?  

That doesn't make any sense. When you log in, the password is tested 
against a string in /etc/passwd (or /etc/shadow). The password change 
should take place instantly; the old should stop working, and the new one 
should start. The kernel doesn't keep track of any passwords. 

That this hasn't happened indicates to me that Linuxconf isn't actually 
changing the password for some reason. 

Try this: As root, run "passwd" to change the password, rather than 
relying on Linuxconf. If, after doing this, you can still log in to the 
machine with the old password, something is very wrong, and it may 
indicate that the machine has been compromised. 

-- 
Samuel Merritt
PGP key is at http://wwwcsif.cs.ucdavis.edu/~merritt/snmerritt.asc
Information about PGP can be found at http://www.mindspring.com/~aegreene/pgp/

Attachment: pgp00001.pgp
Description: PGP signature

References:
- [vox] What happens internally to Linux when it is in password limbo?
  - From: Danny Webster

Prev by Date: [vox] What happens internally to Linux when it is in password limbo?
Next by Date: Re: [vox] What happens internally to Linux when it is in password limbo?
Previous by thread: [vox] What happens internally to Linux when it is in password limbo?
Next by thread: Re: [vox] What happens internally to Linux when it is in password limbo?
Index(es):
- Date
- Thread

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.