PDA

View Full Version : util.....



me1960
22-12-08, 21:36
The main reason people have a password on the dreambox is to keep hackers out http://www.satellites.co.uk/php-bin/forum/images/smilies/smile.gif or card share server providers to keep people out of the cam configs.

But with Tux Commander you can still have access to cam config with password not known. This is why I will cover on how to gain access (local) to a dreambox without resetting password...

Step 1:
use Tux Commander to locate the passwd file ( location: /var/etc/passwd or /var/etc/shadow)

Step 2:
Insert a new line after the first line root:****:0:0:root:/home/root:/bin/sh
and write this (replace <name_user> with a user eg. Pete)

<name_user>::0:0:<name_user>:/home/root:/bin/sh

so lines should look like

root:****:0:0:root:/home/root:/bin/sh (Line 1)
Pete::0:0:Pete:/home/root:/bin/sh (Line 2)

Step 3:
save.

That's it! Now login via ftp or web interface user <Pete> password empty!

(You can remove the user by removing the line added!)

--------------------------------------------------------------------------------------------------
Aditional Info:

1) You must use (passwd) and not the one with the minus sign (passwd-)
2) User can be any name but not root of course (I have added a list below of names not to be used)

To make it more clear what each character means on the line:

(1) . . . (2). . (3) (4) . (5) . . . . (6) . . . . . (7)
root : ***** : 0 : 0 : root : /home/root : /bin/sh

(1) Login in Name .... <User Name>
(2) Encrypted Password ... <if empty then no password>
(3) User Id
(4) Group Id
(5) Comment Field ... <put same as user_name or anything else>
(6) Home Directory for User ... <Keep same as original>
(7) Command Interpreter ... <Init execute, if left empty by default /bin/sh>


List of names not to use:

root, daemon, bin, sys, sync,
games, man, lp, mail, news, uucp,
proxy, www-data, backup, list, irc,
gnats, nobody