14 replies to this topic

[Off]

Well, I set a password for grub on boot but... I've forgotten the password or typed it wrong. Is there any way possible to crack/remove/reset this password?

[TcM]

How did you set the password? I never used one but do you enter the password in the menu.lst?

If yes that would be easy to crack, but I'm not sure how to set a password.

[Off]

Go into the grub shell and run md5crypt

    GNU GRUB  version 0.94  (640K lower / 3072K upper memory)

 [ Minimal BASH-like line editing is supported.  For the first word, TAB
   lists possible command completions.  Anywhere else TAB lists the possible
   completions of a device/filename. ]

grub> md5crypt

Password: ******
Encrypted: $2AdFOPLKkL9AdfSTUIoPArM/

Then copy this line to your grub.conf:

password --md5 $2AdFOPLKkL9AdfSTUIoPArM/

[TcM]

Those steps are to add a password?

[Off]

Yes, to the grub boot loader.

[TcM]

Can't you boot from a live CD, access the hard disk access grub.conf and delete the password?

[TcM]

Well after thinking about what I said... wow, doesn't seem like a safe way to protect yourself using grub...

[LinuxBomber]

Is this all the security that Linux has to offer... where is the most secure OS? This for sure is not secure!!

[MHJ]

That is pretty interesting material to read. I am definitely cutting and pasting that info to my files!

[Oigen]

Weird, is it that simple to hack grub? I think there might be something wrong here, it can't be that simple.

[Tor]

Generally speaking, if a hacker has physical access to your computer/server there is nothing that can really stop him/her.