Web Hosting Talk : Web Hosting Main Forums : Hosting Security and Technology : chown -R in root accident

[TRIBOLIS]

Hi,

I accidently put chown -R username:username * in /root and there is no way to revert? (I forgot to cd directory before chown ownership). I was hoping if there is another way to fix it such as default chown or chown each directories exim, cpanel and whole systems?

I have tried put chown root but /bin/su could not log in as permission denied so I tried to chmod /bin/su in the wheel group but the password failed when tried log in. (I opened another SSH because I didn't want to log out in first SSH).

The server management said I require OS reload but I paid it few days ago and do not want to pay again.

Thanks

[Lightwave]

Have them boot from a livecd, start up SSH so you can login, mount the existing partitions... and fix the directory ownerships that way.

[Steven]

If you can get a livecd / rescue cd in the server it can be fixed up.

[insanelymacintosh]

Why not chown the folders back to root?

chown -R root:root /etc/

chown -R root:root /bin/

chown -R root:root /sys/

and the rest...

[TRIBOLIS]

I have contacted management to get livecd, they said they don't have one on hand. They'll see if the day shift tech can bring one in with him when he gets here.

kingshosting, do you have any more commands from you said and the rest?
I used chown -R root:root * to go back but not sure if they are right. SSH is unable to access as it says:

-bash-3.00$ su
Password:
su: incorrect password (it is correct pass)
-bash-3.00$

Thanks for your help.

[rghf]

Do you have direct root SSH access and which OS is it?

[Techark]

Does the username you chowned everything to have ssh access to the box? If so try logging in as that user to ssh and then start chowning things back to root.
Try logging in with the root password and that user name even if they do not have ssh access it may work.

[localhost127]

Quote:

Originally Posted by Techark

Does the username you chowned everything to have ssh access to the box? If so try logging in as that user to ssh and then start chowning things back to root.
Try logging in with the root password and that user name even if they do not have ssh access it may work.

Users cannot chown files to root. He's going to have to either get a root shell and restore the permissions himself, or get someone to boot a livecd (or in single user mode) as suggest above to do it.

Additionally, the reason that su no longer works (for those wondering) is likely because it is a setuid binary. Since it is no longer owned to root, it will just run as the unprivileged user which is useless.

[TRIBOLIS]

a2b2, yes I have disabled direct root login and it is CentOS.

[TRIBOLIS]

It is / not /root directory. All system folders have changed ownership as I did try revert root ownership.

Still get this error:
-bash-3.00$ su
Password:
su: incorrect password (it is correct pass)
-bash-3.00$

They are in second SSH program. The first one I am still in.. I won't log out because I don't want to locked out (support could not access except me).

[rghf]

A wild shot but does sudo -s work?

[localhost127]

Run this and then try again. Make sure you copy and paste it so its not mistyped:

Code:

chown root:wheel `which su`

If it still doesn't work, run the following command and paste the result here

Code:

ls -l `which su`

[Techark]

Quote:

Originally Posted by localhost127

Users cannot chown files to root. He's going to have to either get a root shell and restore the permissions himself, or get someone to boot a livecd (or in single user mode) as suggest above to do it.

Additionally, the reason that su no longer works (for those wondering) is likely because it is a setuid binary. Since it is no longer owned to root, it will just run as the unprivileged user which is useless.

Depends on what privileges that user had and if he can log in as that user and escalate his privileges.
Your right about that but if he just chowned everything on the box to that username , I do not know if that username is now for all practical reasons now root super user.

It is a long shot at best, if it does not work then he has no choice but to wait for the data center to boot the system using livecd and change the ownerships back to root.

[localhost127]

Quote:

Originally Posted by Techark

Depends on what privileges that user had and if he can log in as that user and escalate his privileges.
Your right about that but if he just chowned everything on the box to that username , I do not know if that username is now for all practical reasons now root super user.

It is a long shot at best, if it does not work then he has no choice but to wait for the data center to boot the system using livecd and change the ownerships back to root.

Unfortunately owning everything to another user does not make that user root (this is really a good thing for TRIBOLIS). The 'su' binary requires it's UID to be 0 (root) in order to actually work. He says that he left the shell open so he does have a root shell. If this is the case then it is just a matter of repairing the correct permissions.

[Techark]

I did say it was a long shot.

Yes I agree. But he says he has root open but it is not letting him chown things back to root so either he does not have root or root has lost permissions or the username he chowned it to is now root.

I really think he is stuck until livecd or OS reload is done.