funny customers

[Per Engelbrecht]

Hi Steve

>>
>> I'm administering a mid-size serverhosting site and have a problem
>> with customers enabling root passwd in single-user mode.
>> It's the same customers that set up fake payment sites, do serious
>> hacking  (i.e. not good, productive hacking) mailspamming and so
>> on.
>>
>> In order to collect information for a criminal case (yes, in some
>> cases we go all the way) I need a way to get into these boxes
>> (mostly
>> FreeBSD's) but I can't think of a way to disable the prompt for
>> root passwd in single-user mode.
>> Know it's a wildcard, but I've been looking at 'set' options under
>> 'boot'  and a way to mount the serverdisk on another fbsd
>> installation, but without any luck.
>>
>> Any help would be appreciatet. Thank you.
>>

>
> Can you not remove the disk and mount it in an alternate box to get
>  access to the data you need?

Keeping in mind that alle the data from / down are important, the
standard procedure adding_a_disk won't work due to the dd part.
A simple mount (finding disk from dmesg) didn't work eighter ..
Both running system and disk use UFS2.

Maybe I'm overlooking the obvious, but what besides the above would do
the trick ?

respectfully
/per
per at xterm.dk

>
> --
> Steve Lalonde RTFM
> Chief Technical Officer
> Entanet International Ltd
> http://www.enta.net/
> _______________________________________________
> freebsd-isp at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-isp
> To unsubscribe, send any mail to
> "freebsd-isp-unsubscribe at freebsd.org"