Board index Solaris

what's the difference between /etc/shadow and /etc/passwd?

what's the difference between /etc/shadow and /etc/passwd?

Post by simo » Mon, 24 Jun 2002 23:28:13



seems the content is identical, if you don't choose the "Shadow passowrd"
option.

anybody can enlight me?

 
 
 
Top

what's the difference between /etc/shadow and /etc/passwd?

Post by Rev. Don Koo » Tue, 25 Jun 2002 00:55:53



> seems the content is identical, if you don't choose the "Shadow passowrd"
> option.

> anybody can enlight me?

        In the beginning, all the information from both files was in the
"/etc/passwd" file.  This allowed all users to see the encrypted
password of all other users which facilitated running cracking programs
against them.  In the interests of security, the encrypted password
entries were removed from the "/etc/passwd" file and placed in the
"/etc/shadow" file which is only readable by root.  Other fields were
also added to control when the account expires, how long a user can keep
the same password, etc...

                Hope this helps,
                        Don

--
***********************      You a bounty hunter?
* Rev. Don McDonald   *      Man's gotta earn a living.
* Baltimore, MD       *      Dying ain't much of a living, boy.
***********************             "Outlaw Josey Wales"

 
 
 
Top

what's the difference between /etc/shadow and /etc/passwd?

Post by Joe Blogg » Tue, 25 Jun 2002 05:46:04



Quote:> seems the content is identical, if you don't choose the "Shadow passowrd"
> option.

> anybody can enlight me?

try the man pages
 
 
 
Top

what's the difference between /etc/shadow and /etc/passwd?

Post by Chris Thomps » Tue, 25 Jun 2002 07:07:50




>In article


>> seems the content is identical, if you don't choose the "Shadow passowrd"
>> option.

>> anybody can enlight me?

>Since Solaris doesn't have a shadow password option, I'm not sure I
>understand what your question is.  It's obviously directed to a bunch of
>different groups in a attempt to gather information.

>The orginal /etc/password file on SunOS 4.x had a passwd field which is
>a 1-way crypt hash with 2 salt bytes.  It required that UNIX systems
>have the /etc/passwd file readable by WORLD, which isn't as secure.  
>Solaris 2.x took this design and added another file with additional
>features called /etc/shadow.  It's supposed to be accessed (rw) only by
>root.  It contains the hashed passwd and other fields (man shadow has
>them all).

SunOS 4.x, in its later days, did have the c2secure option that moved
the encoded passwords to /etc/security/passwd.adjunct, which provided
functionality roughly equivalent to Solaris 2's /etc/shadow.

Chris Thompson
Email: cet1 [at] cam.ac.uk

 
 
 
Top

1. CDE vs. /etc/passwd, /etc/shadow and /etc/group

Hi,
Can anybody tell me what happens to the /etc/passwd, /etc/shadow and
/etc/group when DCE is installed?
I've seen images of these files and seems like CDE adds users & groups
with funny names like 'hosts/machine/group' and
'subsys/dce/dts-servers'.

If this is the case, how do the Solaris commands (useradd/mod/del,
passwd, etc.) get along with these weird users/groups?

Thanks,
--

/* EagleEye Control Software, LTD., Tel-Aviv, Israel                  */
/* .. I busted a mirror and got seven years bad luck, but my        ..*/
/* .. lawyer thinks he can get me five.        (Steven Wright)      ..*/

2. Correct modeline for 1920x1200 screen?

3. Convert NIS passwd back to standard /etc/passwd & /etc/shadow

4. Linux on a 6x86?

5. Comment out a line in /etc/passwd & /etc/shadow

6. HOWTO document for Java ports

7. restricted http acces with /etc/passwd and /etc/shadow

8. kernel 2.6.0 - USB: uhci_hcd problem after suspend...

9. rconsiling the /etc/shadow and /etc/passwd files

10. kuser etc/shadow and etc/passwd

11. Moving etc/shadow & etc /passwd

12. how to tell /etc/passwd from /etc/shadow?

13. Removing entries in /etc/shadow and /etc/passwd via a program


All times are UTC
Board index