Forgotten Passwords
From Info Wiki
Jump to navigationJump to search
User Passwords
User passwords can be reset as follows:
- log in as "root"
- switch to user account, eg for user "fred"
- # su fred
- execute password command to change password for user "fred"
$ passwd
Root Password
Root password can be reset only via booting another Linux on the same computer - either:
- another installed Linux
- a utility USB/CD booted on the computer - these generally run from the root account
- mount the partition containing the root filesystem of the installation for which password reset is required - eg for /dev/sda10
- # mount /dev/sda10 /mnt
- change to the mounted partition
- # chroot /mnt
- execute password command to change password for user "fred"
- $ passwd
Physical Security
It will be seen from the above that any password could be changed on a computer to which physical access is obtained. Any unencrypted data could then be retrieved from such computer. It is therefore essential to:
- prevent unwanted physical access to working computers
- securely erase SSD/HDD storage on computers sent for disposal
- physically destroy or securely erase unwanted removable media such as floppies, USB, SD, CD/DVD