Redhat linux root password hacking

Discuss the security implications of the various flavors of linux and unix

Redhat linux root password hacking

Post by downccp on Thu May 27, 2010 1:36 pm
([msg=39166]see Redhat linux root password hacking[/msg])

Hi all,

I scanned my redhat linux with kernel 2.4, found tcp ports 7/21/22/23/79/80/109/110/111/143 etc opened; udp ports 7/13/37/111/123/161/162/ etc opened.

I tried Metasploit with OpenVas with no luck, how would I penetrate into the system remotely and gain the root password?
downccp
New User
New User
 
Posts: 2
Joined: Thu May 27, 2010 1:15 pm
Blog: View Blog (0)


Re: Redhat linux root password hacking

Post by Goatboy on Thu May 27, 2010 2:41 pm
([msg=39169]see Re: Redhat linux root password hacking[/msg])

It's not as easy as that. Just because you have open ports, doesn't mean they are vulnerable. You need to research what's running on those ports, their versions, check for any known vulnerabilities, and then attempt to exploit them. Simply pointing Metasploit at it generally won't work, and when it does you won't learn a thing.
Assume that everything I say is or could be a lie.
1UHQ15HqBRZFykqx7mKHpYroxanLjJcUk
User avatar
Goatboy
Expert
Expert
 
Posts: 2819
Joined: Mon Jul 07, 2008 9:35 pm
Blog: View Blog (0)


Re: Redhat linux root password hacking

Post by downccp on Thu May 27, 2010 9:42 pm
([msg=39178]see Re: Redhat linux root password hacking[/msg])

Hi Goatboy,

will keep you updated, I agree with you at all. I believe you are one of the well experienced.
downccp
New User
New User
 
Posts: 2
Joined: Thu May 27, 2010 1:15 pm
Blog: View Blog (0)


Re: Redhat linux root password hacking

Post by fashizzlepop on Thu May 27, 2010 10:59 pm
([msg=39180]see Re: Redhat linux root password hacking[/msg])

Sounds like you are interested in rooting. I'd also suggest taking a look at Damn Vulnerable Linux and Google for some tutorials that uilize DVL. If you really want to get into it, I'd suggest the book "Hacking: The Art of Exploitation" which has some really good info on rooting and C programming and network security.

There's my two cents.
The glass is neither half-full nor half-empty; it's merely twice as big as it needs to be.
User avatar
fashizzlepop
Developer
Developer
 
Posts: 2303
Joined: Sat May 24, 2008 1:20 pm
Blog: View Blog (0)



Return to *nix

Who is online

Users browsing this forum: No registered users and 0 guests