with Tags:
password
X

"Passw0rd with a zero"
You know when you go to the ATM or enter a PIN, you're told to cover up your hands so no one can look on. I wonder whether the same rule ought to apply for people on the bus who are on the phone. I've overheard passwords for what seem to be very important institutions, and I have enough non-AIX knowledge to know the root password (for Linux) or Administrator (Windows) is probably something precious. For that matter, if IBM developerWorks - let's shorten it to ibmdw, had a root password that went something like 1bmdw123 , I'd be a little... [More]
Tags:  security password |
Recover root password and VIO server (padmin) password
If you're unfortunate enough to lose the root password on an AIX host, there is a way of recovering it . You can also recover the padmin password in VIOS if you've lost it. Basically, it's a matter of booting from AIX or VIOS installation media and stepping through the System Maintenance menus. When you do that, the boot file systems come from the installation media, and then you import the rootvg volume group which is on the original disks (the one with the unknown password). At that point you can run the passwd command or edit /etc/passwd. ... [More]
Tags:  aix padmin password root |
AIX Security Expert and Denial-of-Service attacks (SOX, Sockets and socks)
AIXpert and SOX (and sockets and Socks) Over the weekend, a client implemented security hardening on their production LPARs. They used AIX 6.1 Security Expert. Apart from some users who had been locked out due to weak passwords, testing went well ... until about 9am Monday, when some users reported they couldn't log in. Here were the symptoms: users couldn't log in after about 9am when things started to get busy existing users couldn't establish additional login sessions sshd was running, but ssh (port 22) didn't even get a login prompt... [More]
Tags:  dos telnet aix_security_expert password denial_of_service aixpert tcptr login attack sox ftp ssh socks |
His account's not locked. He just can't remember his password.
"Unlock my account please" When
users forget their Unix passwords you're likely to get the request to
unlock their accounts. You might be surprised to see in SMIT that the
account is not locked : Lock
/ Unlock a User's Account *
User NAME
testuser Is
this user ACCOUNT LOCKED? false Then you change the user's password and you have a happy user logging in
again. Three strikes and you're out If
the user couldn't log in, why did AIX... [More]
Tags:  unsuccessful_login locked_out smitty aix compassion forgot frown password lsuser account_locked chuser loginretries smile smit exercise muscle annoyance |