Results 1 to 10 of 10
  1. #1
    Join Date
    Oct 2003
    Posts
    5

    Unanswered: Recovering the sa user's password from a backup dataserver on different machine

    Okay, I have one for you all. I recently started a new job and need to recover the sa user's password for Sybase ASE 11.0.3.3 for Linux from a backup dataserver on a different machine.

    I have used select * from syslogins and can see all the users and thier passwords in encrypted format. I have also used bcp and pulled out the sa record in syslogins, but since I can't change the ownership of the master database to delete the sa user and re-import him with the bcp file, what are my options?

    Is there some kind of way I can figure out the old password from the encrypted version?

    If you add the -p (?) option the the dataserver startup script it resets the sa user's password, not displays it, correct?

    I am desparate. I have been working on this for several days.

    Thanks.

  2. #2
    Join Date
    Mar 2001
    Location
    Lexington, KY
    Posts
    606
    From what I understand the password is a one-way hash which is uncrackable, so I think you're SOL. Why not just reset it to something you know (using the switch you identified)?
    Thanks,

    Matt

  3. #3
    Join Date
    Oct 2003
    Posts
    5
    I guess we have some old ass Windows .exe buisiness application that some moron hardcoded the sa username and password it to the application and when I changed the password, it broke.

  4. #4
    Join Date
    Aug 2002
    Location
    Madrid, Spain
    Posts
    97
    Originally posted by krausem
    I guess we have some old ass Windows .exe buisiness application that some moron hardcoded the sa username and password it to the application and when I changed the password, it broke.
    What if the Communications engineers insert
    a sniffer on your network?

    Regards,
    Mariano Corral

  5. #5
    Join Date
    Mar 2001
    Location
    Lexington, KY
    Posts
    606
    That is what I was going to suggest. Put a packet sniffer on your client PC and see (provided it is going over in plaintext) what the password is.

    If you're using ODBC there might be driver-level profilers that you can use to see all commands sent over.
    Thanks,

    Matt

  6. #6
    Join Date
    Feb 2002
    Location
    Willy is on vacation
    Posts
    1,208
    Or you can simply use RIBO available along with any newer releases of ASE and install this on the client side and check what password is sent across.

  7. #7
    Join Date
    Oct 2003
    Posts
    5
    Originally posted by willy_and_the_ci
    Or you can simply use RIBO available along with any newer releases of ASE and install this on the client side and check what password is sent across.
    Can you be more specific about this RIBO program? Thanks.

    I tried ethereal, but it only captures the password sent to the server in plaintext, it checks it on the server and just sends a message denied.

  8. #8
    Join Date
    Mar 2001
    Location
    Lexington, KY
    Posts
    606
    Originally posted by krausem
    I tried ethereal, but it only captures the password sent to the server in plaintext, it checks it on the server and just sends a message denied.
    Isn't that what you need? Now you can change the SA password back to whatever the application is sending.
    Thanks,

    Matt

  9. #9
    Join Date
    Oct 2003
    Posts
    5
    Originally posted by MattR
    Isn't that what you need? Now you can change the SA password back to whatever the application is sending.
    No, it only captures the password that I send to the server.

  10. #10
    Join Date
    Feb 2002
    Location
    Willy is on vacation
    Posts
    1,208
    Originally posted by krausem
    No, it only captures the password that I send to the server.
    That's what you would get with RIBO too. Now you have to use this password on another server and bcp out the encrypted password from syslogins and bcp into your existing server. This assuming that you have a nother valid login that can connect to your 11.0.3 Server.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •