https://github.com/osquery/osquery logo
Title
m

marpaia

08/01/2018, 9:32 PM
can you get shell on the database?
m

Mustafa

08/02/2018, 7:40 AM
yes, the passwords should be encrypted, what can i do? thanks
m

marpaia

08/02/2018, 3:14 PM
the simplest solution is to run
delete from users where 1=1;
or something, which will totally delete every user and expose the setup endpoint again that will expose a web endpoint that allows you to create a new admin user.
if you have users you want to keep, then you can just delete your row or update your hash/salt with a known good pair from another fleet instance or something.
m

Mustafa

08/03/2018, 7:59 AM
marpaia thank you very much for your support
m

marpaia

08/03/2018, 4:10 PM
nice, you got in @Mustafa?