Solaris 8 - Asks for current root password when trying to change root password.

tferrazz · April 5, 2009, 10:50pm

Hello All,
I have several solaris boxes running Solaris 8. When changing root passwords on them, all will simply ask for the new root password to change and of course to re-type the new password. One of the systems however asks for the existing root password before it will display the new password prompt for root.

Any ideas.

Thanks in advance

Tony

DukeNuke2 · April 6, 2009, 6:18am

what is the output of "who am i" on this system?

tferrazz · April 6, 2009, 8:17pm

Hi DukeNuke2,
Thanks for your reply. Here is some additional info including the output of who am i.

Thanks for any assistance or ideas.

SunOS hostname 5.8 Generic_117350-46 sun4u sparc SUNW,Ultra-80

hostname:():/root
# who am i
root       pts/1        Apr  7 10:01    (###.###.###.##)
hostname:():/root
# id
uid=0(root) gid=100(users)
hostname:():/root
# passwd
passwd: Changing password for root
Password:
passwd: Sorry, wrong passwd
Permission denied
hostname:():/root

Example of trying to change password of normal user

hostname:():/root
# passwd joe
Password:
passwd: Sorry, wrong passwd
Permission denied

DukeNuke2 · April 7, 2009, 1:54am

is this host member in a nis or ldap domain?

tferrazz · April 7, 2009, 2:42am

no, it is not a member of nis or ldap.......standalone

/etc/nsswitch.conf all set to files

DukeNuke2 · April 7, 2009, 3:02am

have you rebooted the server? checked all filesystems/permissions (special /var/tmp)? how do you login (ssh/telnet/console)? have you run "pwconv"?
there are so many possibilities... it's hard to do this remote...

methyl · April 7, 2009, 9:32am

Root apparently being in group 100 (users) is a concern.
Did you "su - root" or become root by some other means?

Please post the following, and post any errors if your root account gives and error:

# Permissions of root directory
ls -ald /

# Permissions of /etc
ls -lad /etc

# Permissions of password file itself
ls -lad /etc/passwd

# Location of passwd command
type passwd

# Permissions of passwd command
ls -lad <answer from above>

# Root entry from /etc/passwd
grep \^root: /etc/passwd

# Results of password file checking program
pwck

# Results of group file checking program
grpck

prym_admin · April 7, 2009, 11:03am

I had a similar problem ages ago, I think it was something to do with the passwd or shadow file having an error in it.
(something like an extra space or control character)

methyl · April 7, 2009, 2:28pm

Well worth backing up the following files somewhere on the root filesystem where you can find them when in single user mode: passwd, shadow, group.
At the moment you may only be able to log in because of password file caching.
More ideas:
Visually compare the /etc/group file with another system to be sure that it is not blank or has many lines missing.
Visually compare the first few lines of /etc/passwd with another system. The entry for "root" must be the first line.
Check that anything which has the password file open can be accounted for (fuser).
Check you don't have two entries for "root" in /etc/passwd.
Check you don't have two entries for UID zero in /etc/passwd.