Tuesday, February 2, 2010

Change password on non-admin user in SPLAT

Unbelievable, but true.

Passwd command is used by Checkpoint to change ONLY expert password :-)

Do not try to use "passwd <username>" as that wont do the job :-)

[Expert@nd00001]# passwd
Enter new expert password:
[Expert@nd00001]# passwd user
Enter new expert password:

After a bit of scratching my head I got this:

[Expert@nd00001]# which passwd
alias passwd='/bin/expert_passwd'
[Expert@nd00001]# more /bin/expert_passwd

******** /bin/expert_passwd: Not a text file ********

Luckily there is still good old passwd stored in /usr/bin/:

[Expert@nd00001]# /usr/bin/passwd test
Changing password for user test.
New UNIX password:
BAD PASSWORD: it is too short
Retype new UNIX password:
passwd: all authentication tokens updated successfully.

This strangely reminds me on the good old "su" hack. Lessons learned from that hack is: "Make sure you ALWAYS use full path to your binaries!!!"

Checkpoint confirmed that in a bit strange way ;-)

1 comment:

Evgeniy said...

can you help my with settings, i'm planing to create redudance LINK
I have two ISP
I have check point UTM-1 edge X