imported>mutante |
imported>mutante mNo edit summary |
||
Line 57: | Line 57: | ||
g33k |
g33k |
||
=== Reset forgotten passwords === |
|||
==== [[Mediawiki]] ==== |
|||
UPDATE user SET user_password = MD5(CONCAT(user_id, '-',MD5('somepass'))) WHERE user_name = 'whatever'; |
|||
==== [[MySQL]] ==== |
|||
[[MySQL#Reset_forgotten_root_password]] |
|||
==== [[Windows]] ==== |
|||
[http://support.microsoft.com/?kbid=321305 Microsoft: How to log on to Windows XP if you forget your password] |
|||
==== [[Linux]] ==== |
|||
Wenn du von einem anderen Medium bootest und das Passwort auf einem System mit aktivierten Shadow Passwörtern die /etc/shadow bearbeitest und dort das verschlüsselte Pass schlicht entfernst (::) kann man sich je nach Distribution direkt ohne Pass einloggen ([[Suse]]) oder muss zuerst auf einem anderen System ein bekanntes Passwort verschlüsseln und den daraus resultierenden encrypteten String einfügen. ([[Debian]]). |
|||
[http://linuxgazette.net/107/tomar.html How to Reset forgotten Root passwords] |
|||
[[Category:Hacking]] |
[[Category:Hacking]] |
Revision as of 16:59, 18 April 2006
your passwords
some hints like min. 8 letters, combined with numbers etc.
default passwords
The most common default password is <blank> or the 'Enter' password. (Don't forget to try just because its seem to be too easy to be true.)
- Website with a huge collection of default passwords for routers, AP's, switches etc. Sorted by manufactor.
Things NOT to do
where passwords should NOT be
- on a post-it sticker attached to the monitor
- in public dumpfiles of mediawikis [1]
- on this wiki page ;)
- tattooed to your forhead
- the name of your new born child
- your mantra
- in a dictionary
what passwords u should NOT use
A common passwords list by Openwall Project public domain
This is a list of over 3000 passwords most commonly seen on a set of Unix systems in mid-1990s, sorted for decreasing number of occurrences (that is, more common passwords are listed first).
FTP archives:
- ftp://ftp.openwall.com/pub/wordlists/ (and its mirrors)
- ftp://ftp.ox.ac.uk/pub/wordlists/
- ftp://ftp.zedz.net/pub/crypto/wordlists/
derived exclusively from the ox.ac.uk archive above, but files uncompressed
includes the ox.ac.uk archive and more
Warning: ironical
Examples: Good Passwords
something like
susi
peter
123456
qwertz/qwerty
asdfg
letmein
admin
root
irule
owned
or
(very good one)
g33k
Reset forgotten passwords
Mediawiki
UPDATE user SET user_password = MD5(CONCAT(user_id, '-',MD5('somepass'))) WHERE user_name = 'whatever';
MySQL
MySQL#Reset_forgotten_root_password
Windows
Microsoft: How to log on to Windows XP if you forget your password
Linux
Wenn du von einem anderen Medium bootest und das Passwort auf einem System mit aktivierten Shadow Passwörtern die /etc/shadow bearbeitest und dort das verschlüsselte Pass schlicht entfernst (::) kann man sich je nach Distribution direkt ohne Pass einloggen (Suse) oder muss zuerst auf einem anderen System ein bekanntes Passwort verschlüsseln und den daraus resultierenden encrypteten String einfügen. (Debian).