OpenPli root Password Protection?

Started by zwdpacjent, 02 Feb 2022 22:20

root password security

Please log in to reply

3 replies to this topic

#1 zwdpacjent

Member
10 posts

+1

Neutral

Posted 2 February 2022 - 22:20

Hi All

Thanks for having me here.

I was wondering if there is a safe and robust way to protect the openpli sat receiver from unwanted root password changes ? (not including low level flash via usb - as long as my data is also wiped then Im happy) I know my way around linux platform but I rather ask before I break my own Vu+. I dont have time for another sw installations atm. I understand that Change Root Password apk can also change the password, hence my question to OpenPli devs.

Please kindly advise. Many thanks !

Re: OpenPli root Password Protection? #2 scriptmelvin †

PLi® Contributor
720 posts

+46

Good

Posted 2 February 2022 - 23:24

Afaik, any method (including the Change Password plugin) to change the root password requires the old password. Except... if one accesses the box with Samba, one can edit /etc/shadow without a password.

You could make the file immutable: chattr +i /etc/shadow

Now the only way to change the file through Samba is to make it mutable again... which requires the root password.

Sorry to inform you this member, my brother, passed away.

Re: OpenPli root Password Protection? #3 WanWizard

PLi® Core member
70,371 posts

+1,807

Excellent

Posted 2 February 2022 - 23:30

In smb-user.conf, remove the # in front of the smb-secure.conf include, and anonymous access via samba is disabled.

Currently in use: VU+ Duo 4K (2xFBC S2), VU+ Solo 4K (1xFBC S2), uClan Usytm 4K Ultimate (S2+T2), Octagon SF8008 (S2+T2), Zgemma H9.2H (S2+T2)

Due to my bad health, I will not be very active at times and may be slow to respond. I will not read the forum or PM on a regular basis.

Many answers to your question can be found in our new and improved wiki.

Re: OpenPli root Password Protection? #4 zwdpacjent

Member
10 posts

+1

Neutral

Posted 21 February 2022 - 12:26

Thank you very much both for the support. Tested & working well.

Back to The Lounge

Also tagged with one or more of these keywords: root password, security

Synology Zero-day exploit patch Started by 40H3X, 12 Nov 2024 Security	0 replies 90 views	40H3X 12 Nov 2024
Package signatures and download security Started by David85, 29 Oct 2018 security, opkg, https	10 replies 1,605 views	Erik Slagter 30 Oct 2018
[Security] CVE-2017-9807 - OpenWebIf Vulnerability Started by WanWizard, 24 Jun 2017 security, OpenWebIf	4 replies 3,739 views	WanWizard 25 Jun 2017
Glibc security bug Started by Max66, 17 Feb 2016 Development, Security	1 reply 1,658 views	Erik Slagter 17 Feb 2016
Security - Is there a list of network ports which should be open? Started by hdp160, 27 Jan 2015 Security	3 replies 1,427 views	MiLo 27 Jan 2015