0

I was stupid enough to leave the RP2 exposed to the internet with the default password (for the momentary sake of convenience) for a very short time and someone (I am assuming an automated scanning program) changed the password for the pi user and now I can't log in.

Is there a way to undo it?

AngryHacker
  • 157
  • 1
  • 7

1 Answers1

4

See How can you recover your password? which explains how to reset the password.

HOWEVER if someone has modified the password there is no way of knowing what else was done.

Either restore from your backup OR do a fresh install - you should have given up on Jessie a year ago - it is unsupported!

The VERY FIRST thing I do on ANY installation is change the password!

Milliways
  • 59,890
  • 31
  • 101
  • 209
  • I am curious, how do you know I am on Jessie? – AngryHacker Nov 18 '18 at 01:28
  • @AngryHacker you tagged your post with "Raspbian-Jessie" - I assume this is true. – Milliways Nov 18 '18 at 01:55
  • @Milliways Ahhh, yes. I am installing OctoPrint distribution which comes with Jessie afaik. – AngryHacker Nov 18 '18 at 02:54
  • @Milliways Anyways, the password recover didn't work because whoever hacked me set the disk into read-only mode. Consequently passwd pi wouldn't work. At least I was able to copy everything off the disk. And then, as you recommended, I just reinstalled everything. – AngryHacker Nov 18 '18 at 02:56
  • just be careful with the data you copied off, there could be malicious code in there – Chad G Nov 19 '18 at 19:14