Bugtraq mailing list archives
Re: Breaking in from the monitor at the console
From: mouse () Collatz McRCIM McGill EDU (der Mouse)
Date: Tue, 7 Jun 1994 08:25:49 -0400
But if you lose the monitor password, a recovery procedure is documented.Why can't you "strings /dev/eeprom" and look at the first word, which is the monitor password I believe.
For one thing, that assumes the machine will boot far enough for you to log in (as root, since presumably nobody else can read /dev/eeprom). If it's set fully secure (eeprom secure=full), this is not normally the case. As for whether it's the first word, that is not true on the one machine I just tried; it may depend on the machine (this was tried on a SPARCstation 1+). When I did "strings - /dev/eeprom", I got 8 strings: 45670123 31204567 Ec#Y;A1y sd()vmunix le()vmunix 0123 ^L9600,8,n,1,- ^L9600,8,n,1,- The third string has been changed, since that was the ROM password. (I replaced it with a now-used password from my use-once password scheme.) Based on the output of /usr/etc/eeprom, here are my guesses: 45670123 st-targets 31204567 sd-targets Ec#Y;A1y password sd()vmunix boot-from le()vmunix boot-from-diag 0123 sbus-probe-list ^L9600,8,n,1,- ttya-mode ^L9600,8,n,1,- ttyb-mode Obviously, I could have ttya-mode and ttyb-mode reversed, and the ^L before them is presumably a stray. der Mouse mouse () collatz mcrcim mcgill edu
Current thread:
- Re: Re: Breaking in from the monitor at the console Jim Thompson (May 31)
- <Possible follow-ups>
- Re: Breaking in from the monitor at the console John C. Orthoefer (Jun 01)
- Re: Breaking in from the monitor at the console der Mouse (Jun 05)
- Re: Breaking in from the monitor at the console Catherine Allen (Jun 06)
- Re: Breaking in from the monitor at the console gabrams () camden ge com (Jun 07)
- Re: Breaking in from the monitor at the console der Mouse (Jun 07)
- Re: Breaking in from the monitor at the console Mark Fullmer (Jun 07)
- Re: Breaking in from the monitor at the console Bruce Barnett (Jun 07)
- Re: Breaking in from the monitor at the console Bonfield James (Jun 07)
- Re: Breaking in from the monitor at the console Casper Dik (Jun 07)