Security Basics mailing list archives

Re: Question about passwd file (Linux)

From: Mavrofidis Manolis <mmavrofides () gmail com>
Date: Fri, 08 Feb 2013 16:18:01 +0200

Στις 8/2/2013 2:24 μμ, ο/η Arpita Gavshinde έγραψε:

security-basics@securityfocus.comHi all,

I have a question about passwd file in Linux where when 'x' for a particular user is deleted from /etc/passwd file, 
system doesnot ask for password to log into the system. But when pasword is set again for that user again, then 
instead of showing 'x' in /etc/passwd file, MD5 hash of new password is shown. Why is it so ?


Thanks in advance

Confidentiality: This e-mail and any attachments may be confidential and may also be privileged. If you are not an 
intended named recipient, please notify the sender immediately and do not disclose the contents to another person use 
it for any purpose, or store or copy the information in any medium.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

X indicates that there is a passowrd set which can be found in the
/etc/shadow file. In general, passwords are stored in the etc/shadow
file and usually they are stored using crypt(). You can check the manual
and the parameter it takes to figure out if it is md5 hash or sha1 or
whatever.


Mavrofidis Manolis


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

Current thread:

Question about passwd file (Linux) Arpita Gavshinde (Feb 08)
- Re: Question about passwd file (Linux) Mavrofidis Manolis (Feb 08)
- Re: Question about passwd file (Linux) Matthew Caron (Feb 08)
- Re: Question about passwd file (Linux) Gustavo Castro (Feb 08)
- RE: Question about passwd file (Linux) Erik Soosalu (Feb 08)
- Re: Question about passwd file (Linux) Nikhil Wagholikar (Feb 08)