[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: how strong is the /etc/passwd encryption?

From: "Kevin W. Reed" <soldo telesys tnet com>
To: redhat-list redhat com
Subject: Re: how strong is the /etc/passwd encryption?
Date: Thu, 31 Dec 1998 09:50:25 -0700

Told to us by Hugo Rabson (hugo rabson zetnet co uk)
on Thu, Dec 31, 1998 at 08:01:09AM -0000

Subject: Re: how strong is the /etc/passwd encryption?
> Is it just crypt(1)? Or crypt(des)? Or something else?

Its just crypt but hopefully you are using Shadow passwords which are
not accessible to normal users so they can't "See" them in the first place.

When using shadow passwords, the encrypted password is removed from the 
publically readable /etc/passwd file and put in the restricted /etc/shadow
file which normally has 0400 permissions (readable by root only).

-- 
Kevin W. Reed - Voice 602-469-5106         TNET Services - MAILBOT.COM
Mesa, Arizona U.S.A.                  MAJORDOMO & Mailing List Account
mailto://soldo tnet com - http://www.tnet.com - http://www.mailbot.com
  PGP Fingerprint = 96 52 F3 29 13 57 15 49  1C 18 0F CC A0 0A 73 07

References:
- how strong is the /etc/passwd encryption?
  - From: Hugo Rabson

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]