[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: No Shadow?!



It is not bad at all , normaly it depends on the system configuration...
If you talk about security issues so it is harder to crack root passwd
when you have an unreadable passwd file (shadow), than when you have it
on the /etc/passwd .   

maybe they have other tools to protect this system that you as a student
do not know they exsist . so one cant tell you for sure if its good or 
bad , it depends many considurations that are not mention in your mail.

hope that helps ...

>
>Hi fellow Linuxers,
>
>Those of you who have been in this list for a while probably have seen
>my name before here and know that I am not a 17 years old kid with
>raging hormones so I hope you will honor me with a real answer to this
>sensitive question:
>
>How bad is it when a real life system has the encrypted root password in
>/etc/passwd? or to put in other words, no shadow?
>
>Am I naive or is the system administrator a damn fool? (well they do
>have an NT lab... ;-)
>
>In case you're wondering, I just noticed that the main UN*X (SunOS
>Release 4.1.4 (MTA-NoFrwd) #2) at the place I study at has no shadow
>installed (the name shall be withheld to protect the guilty) and THESE
>are the guys who suppose to be teaching me ...
>
>---
>Gilad Ben-Yossef <gilad@benyossef.com>
>
>


-- 
Eddie Harari  - phone: 972-3-6190999
                fax  : 972-3-6190992
                ___________________
                Take A Walk In The Wild Side ...