5

It's very weird that after switching to zsh from bash, I can't access root.

I normally use 'su' to login as root after I login as a normal user (username is normalusername) with less privileges. And it was always nice. But after switching root shell from bash to zsh, when I try to login via su, I got:

normalusername@(none):~$ su
Password: (enter the correct password)
Cannot execute zsh: No such file or directory

When I access root directly via ssh from my Mac, I got:

localhost:~ myname$ ssh -lroot 106.186.120.20
[email protected]'s password: (enter the correct/incorrect password)
Permission denied, please try again.

No matter whether I entered the correct password, it comes again and again.

So I intentionally entered a wrong password with "su" from a normal user, I got:

normalusername@(none):~$ su
Password: (entered a wrong password and pressed enter)
(pressed enter)
su: Authentication failure

After entering the incorrect password I didn't see anything, I typed enter twice and then got the su: Authentication failure result.

I tried for many times and the conclusion is:

  1. If I enter the correct password, it will tell me that "Cannot execute zsh: No such file or directory"
  2. If I enter the incorrect password, it will not showing up anything until I hit enter for 2-6 times.

It seems to be an indication that I didn't just forget the "correct password". But how can I access root anyway?

The entry in /etc/passwd is

root:x:0:0:root:/root:zsh
Gilles 'SO- stop being evil'
  • 807,993
  • 194
  • 1,674
  • 2,175
AGamePlayer
  • 7,415
  • 16
  • 46
  • 55
  • It looks like you have specified the new shell incorrectly. Did you enter the full path to zsh when you changed it? – D_Bye Jan 04 '15 at 12:37
  • 1
    @jimmij It's `root:x:0:0:root:/root:zsh` so it should be `root:x:0:0:root:/root:/bin/zsh` instead, right? How could I fix this? Thanks! – AGamePlayer Jan 04 '15 at 13:36
  • @AwQiruiGuo `chsh` allows you to change a user's shell. If you can't use it, or can't get permissions to, try to edit `/etc/passwd` directly. You may need `sudo` at some point ;) – John WH Smith Jan 04 '15 at 13:49
  • Just entered `sudo vim /etc/passwd` to edit it, before I was asked to enter a password, I got `sudo: unable to resolve host (none)` then I was prompted to enter the password for my current user. I entered and then I got this: `normalusername is not in the sudoers file. This incident will be reported.` – AGamePlayer Jan 04 '15 at 13:56
  • Use `sh -s /bin/bash`, then fix the problem. – ctrl-alt-delor Jan 17 '17 at 18:16
  • re `sudo` on some systems being in group `sudo` will allow you to use sudo with full privileges. I would recommend `sudo` over `su`. – ctrl-alt-delor Jan 17 '17 at 18:19
  • Let this be a lesson for all about glancing around for and respecting any statements like "actually, you should [some seemingly unimportant nit-picky thing like 'always use absolute paths when setting the shell']". – mtraceur Jul 30 '22 at 14:40

3 Answers3

10

try: cd /usr/bin; su. Since you didn't give an absolute path to zsh. su is checking the PWD. changing to the directory zsh exists in will work on some systems. an example:

% su
Password:
su: zsh: No such file or directory
% cd /usr/local/bin
% su
Password:
# print $OSTYPE
freebsd10.0
#
llua
  • 6,760
  • 24
  • 30
  • 3
    And you won't ever have to use it again, because you are going to use absolute paths to the login shells right? :} – llua Jan 07 '15 at 16:07
8

Your entry in /etc/passwd is

root:x:0:0:root:/root:zsh

This is an invalid entry: the shell must be a full path to an executable, the login program does not perform $PATH lookup.

You won't be able to log into the root account by normal means. You can use sudo to invoke a command, e.g. sudo vipw, if your account has sudo permissions. This is the only common method to bypass the login shell setting in the target account.

If you aren't a sudoer, you've probably locked yourself out of the root account. You'll need console access to repair the system. Boot in single user mode (see How do I run a command as the system administrator (root)) and edit /etc/passwd to contain

root:x:0:0:root:/root:/bin/zsh

(with the correct path for zsh on your system).

Some administrators set up a toor account with UID 0 but a different shell (typically a statically linked binary such as sash, to allow root to log in even in case of a misconfiguration such as this one (the most common misconfiguration is a broken shared library in the normal shell).

To avoid such issues in the future, use the chsh command to change a user's shell, rather than editing /etc/passwd directly. And if you must edit /etc/passwd or some other file that is involved in gaining root access, keep a root shell open in a terminal and don't close it until you've verified that you can still log in as root.

Community
  • 1
Gilles 'SO- stop being evil'
  • 807,993
  • 194
  • 1,674
  • 2,175
4

  • Check your current shell with

    grep '^root:' /etc/passwd

    you should see at the end of the line full path to shell used by root user, like /bin/zsh. Then check if the path is not misspelled, file exists and has proper permissions set (read and execute).

  • If path was not correct then check where your zsh executable is placed with

    type zsh

  • After that su to root using the correct shell path, e.g. in case of /bin/zsh:

    su -s /bin/zsh -

  • Lastly run chsh to change default shell to /bin/zsh

jimmij
  • 46,064
  • 19
  • 123
  • 136
  • I checked the file passwd and noticed it's `root:x:0:0:root:/root:zsh` and after I checked with `type zsh` I got `zsh is /usr/bin/zsh`. So I use `su -s /usr/bin/zsh` but the same trouble happened. I was asked to enter the password and If I enter the correct one, I got a `Cannot execute zsh: No such file or directory` error – AGamePlayer Jan 04 '15 at 14:01
  • 1
    @AwQiruiGuo what does `ls -l /usr/bin/zsh` show? – jimmij Jan 04 '15 at 14:03
  • result: `lrwxrwxrwx 1 root root 28 Dec 26 06:53 /usr/bin/zsh -> /etc/alternatives/zsh-usrbin` – AGamePlayer Jan 04 '15 at 14:04
  • 1
    @AwQiruiGuo and `ls -l /etc/alternatives/zsh-usrbin`? – jimmij Jan 04 '15 at 14:05
  • 1
    What's the difference between `su -s /usr/bin/zsh` and `su -s /usr/bin/zsh -` ? – PM 2Ring Jan 04 '15 at 14:06
  • 1
    @PM2Ring basically it sets all environment variables for login user, from manual: `argument - may be used to provide an environment similar to what the user would expect had the user logged in directly.` Compare for example `echo $PATH` with and without `-` argument. – jimmij Jan 04 '15 at 14:08
  • 1
    @jimmij So would leaving out the final `-` have caused the error mentioned in the 1st comment? – PM 2Ring Jan 04 '15 at 14:14
  • 1
    @PM2Ring Very unlikely. `su` without `-` should work fine, it just leaves (do not set) some variables, perhaps better example is `export LC_ALL=C` and then compare `su` or `su -` to another user. OP on the other hand seems to have some problem with (broken?) link or file permission. – jimmij Jan 04 '15 at 14:22
  • @jimmij `ls -l /etc/alternatives/zsh-usrbin` got -> `lrwxrwxrwx 1 root root 9 Dec 26 06:53 /etc/alternatives/zsh-usrbin -> /bin/zsh4` – AGamePlayer Jan 04 '15 at 14:28
  • @jimmij `su -s /usr/bin/zsh` and `su -s /usr/bin/zsh -` got the exact same result. – AGamePlayer Jan 04 '15 at 14:28
  • 1
    @AwQiruiGuo and what about `ls -l /bin/zsh4`? – jimmij Jan 04 '15 at 14:32
  • @jimmij result: `-rwxr-xr-x 1 root root 696880 Feb 28 2012 /bin/zsh4` – AGamePlayer Jan 04 '15 at 14:41
  • 1
    @AwQiruiGuo Try to pass `/bin/zsh4` to `su` directly. Also what happens when you just run `zsh`, is it ok? – jimmij Jan 04 '15 at 14:46
  • @jimmij did you mean `su /bin/zsh4`? It got `No passwd entry for user '/bin/zsh4'` and I wasn't promoted to enter any password – AGamePlayer Jan 04 '15 at 14:50
  • 1
    @AwQiruiGuo Yes, but with `-s` option. Let us [continue this discussion in chat](http://chat.stackexchange.com/rooms/19978/discussion-between-jimmij-and-aw-qirui-guo). – jimmij Jan 04 '15 at 14:51