On Sun, 8 Mar 1998, Aaron Walker wrote:
> Is it possible to have shadow passwords installed and have an
> /etc/passwd like:
>
<file with Steve's and Stephen's corrections in here>
>
> Everyone is shadowed except root. Is this possible?
>From the technical point of view yes. I've just checked and it seems that
you may have both shadowed (with "x" in password field and record in
/etc/shadow) and not shadowed entries in /etc/passwd.
Please explain me something: WHAT FOR??? AFAIK the main purpose of
installing shadow passwords is to move encrypted passwords out of world
readable /etc/passwd to /etc/shadow readable only by root in order to
increase security. It's possible to crack a password if you have it's
encrypted form. So, in the solution above, "bad guy" does not have simple
access to encrypted users' passwords, but he has encrypted root password
and he may crack it (quite) easily. And all the "bad guy" usually wants
to do is to gain root access! So I just don't understand why do you
want to do this...
Regards,
Chris
// Krzysztof Zaraska * Vanity of vanities,
// [EMAIL PROTECTED] * saith the Preacher,
// System administrator / webmaster at * vanity of vanities;
// Nowodworski Secondary School, Cracow * all is vanity. [Ec1:2]
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
