Bugtraq mailing list archives
Re: hpux 10.0 remote administration
From: nate () MILL2 MILLCOMM COM (nate)
Date: Mon, 15 Jul 1996 22:06:42 -0500
sam_exec is still usedDo you happen to know what password they use for sam_exec ;-) (the concept looks dangerous, I have not had time to really look at it. But I didn't enable it either...)Yes. there is a default password. Im not sure if it has been changed for 10.X, but if you run crack on it, you will find it without a question. At that point, anyone can pretty much log into your machine as sam_exec and hit ctl-c to obtain a uid 0 shell.
HP's analytical products (PA-RISC 9000 700 series workstations, in my experience) usually running HP-UX v9.0x also are shipped with some weak default accounts: csadmin (pw:hp), chemist, user1 - user8. csadmin can basically do anything on the system.. Designed with a small, private LAN in mind, HP seems to underestimate security on these machines. I would imagine that more than a few find there way onto larger networks, however. I just solve the problem by disabling the accounts, they are seldom needed after non-networked configuration, if even then. -Nate Smith <nate () millcomm com> || http://www.millcomm.com/~nate
Current thread:
- Re: hpux 10.0 remote administration Matthew G. Harrigan (Jul 15)
- Re: hpux 10.0 remote administration nate (Jul 15)
- <Possible follow-ups>
- Re: hpux 10.0 remote administration Matt Barrie SYD (Jul 15)
- Re: hpux 10.0 remote administration Matthew G. Harrigan (Jul 16)