If you don't have access to the system with the database, your best option is reset the admin eamil a/c password from cPanel. Most hosting platforms allow the admin account to do this.
Then you can reset the password and let it be sent to that a/c If you had access the the systems, you would only need to restart the daemon in fail safe with "–skip-grant-tables &" This will permit root login without a password, then you can set a new password for root with the "UPDATE user" sql query Douglas onyango +256(0712)981329 If you are not part of the solution, you are part of the Problem. --- On Fri, 7/3/09, [email protected] <[email protected]> wrote: From: [email protected] <[email protected]> Subject: LUG Digest, Vol 59, Issue 5 To: [email protected] Date: Friday, July 3, 2009, 12:00 PM Send LUG mailing list submissions to [email protected] To subscribe or unsubscribe via the World Wide Web, visit http://kym.net/mailman/listinfo/lug or, via email, send a message with subject or body 'help' to [email protected] You can reach the person managing the list at [email protected] When replying, please edit your Subject line so it is more specific than "Re: Contents of LUG digest..." Today's Topics: 1. Mysql database password hack (Mugarura Cavin) 2. Re: Mysql database password hack (Ernest Byaruhanga) 3. Re: Mysql database password hack (Benoit Marquis) 4. Re: Mysql database password hack (Kisakye Alex) ---------------------------------------------------------------------- Message: 1 Date: Fri, 3 Jul 2009 00:39:09 -0700 From: Mugarura Cavin <[email protected]> Subject: [LUG] Mysql database password hack To: [email protected] Message-ID: <[email protected]> Content-Type: text/plain; charset=ISO-8859-1 Lug, has anyone hacked a mysql database. Problem domain: i forgot or someone changed the admin password for a mysql database. I can change the password using the forgot my password option, however the email registered to the administrator belongs to someone who is out of town. I am not going to wait for him to come back. I have access to the database, through cpanel. Has anyone (on lug) hacked a mysql database password before. i know mysql encrypts passwords. I am going to hack it, but i just thought i shouldnt start from scratch, if there is someone out there who has done it be4. cheers -- The real danger is not that computers will begin to think like men, but that men will begin to think like machines. Mugarura. A. Cavin Software Lab International Ltd Email: [email protected] [email protected] Website: www.softwarelabint.com +256-70-2850260 'Mobile Banking Solutions' ------------------------------ Message: 2 Date: Fri, 03 Jul 2009 11:55:36 +0400 From: Ernest Byaruhanga <[email protected]> Subject: Re: [LUG] Mysql database password hack To: Linux Users Group Uganda <[email protected]> Message-ID: <[email protected]> Content-Type: text/plain; charset=ISO-8859-1 Mugarura Cavin wrote thus on 7/3/09 11:39 AM: > Lug, > > has anyone hacked a mysql database. only if you have superuser access on the OS that the mysql server is installed. bonne chance :) eb ------------------------------ Message: 3 Date: Fri, 3 Jul 2009 09:57:47 +0200 From: Benoit Marquis <[email protected]> Subject: Re: [LUG] Mysql database password hack To: Linux Users Group Uganda <[email protected]> Message-ID: <[email protected]> Content-Type: text/plain; charset="iso-8859-1" maybe you should hack the admin mail ? :-) 2009/7/3 Ernest Byaruhanga <[email protected]> > Mugarura Cavin wrote thus on 7/3/09 11:39 AM: > > Lug, > > > > has anyone hacked a mysql database. > > only if you have superuser access on the OS that the mysql server is > installed. > > bonne chance :) > > eb > > _______________________________________________ > LUG mailing list > [email protected] > http://kym.net/mailman/listinfo/lug > %LUG is generously hosted by INFOCOM http://www.infocom.co.ug/ > > The above comments and data are owned by whoever posted them (including > attachments if any). The List's Host is not responsible for them in any way. > --------------------------------------- > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://orion.kym.net/pipermail/lug/attachments/20090703/ef7d0992/attachment.html ------------------------------ Message: 4 Date: Fri, 03 Jul 2009 10:51:06 +0300 From: Kisakye Alex <[email protected]> Subject: Re: [LUG] Mysql database password hack To: Linux Users Group Uganda <[email protected]> Message-ID: <[email protected]> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Which version are you running, maybe there is an exploit somewhere (hint: milw0rm) Alex Mugarura Cavin wrote: > Lug, > > has anyone hacked a mysql database. > Problem domain: > i forgot or someone changed the admin password for a mysql database. > I can change the password using the forgot my password option, however > the email registered to the administrator belongs to someone who is > out of town. I am not going to wait for him to come back. > > I have access to the database, through cpanel. > Has anyone (on lug) hacked a mysql database password before. > i know mysql encrypts passwords. > > I am going to hack it, but i just thought i shouldnt start from > scratch, if there is someone out there who has done it be4. > > cheers > > > ------------------------------ _______________________________________________ LUG mailing list [email protected] http://kym.net/mailman/listinfo/lug End of LUG Digest, Vol 59, Issue 5 **********************************
_______________________________________________ LUG mailing list [email protected] http://kym.net/mailman/listinfo/lug %LUG is generously hosted by INFOCOM http://www.infocom.co.ug/ The above comments and data are owned by whoever posted them (including attachments if any). The List's Host is not responsible for them in any way. ---------------------------------------
