public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-user] x or * in /etc/passwd ?
@ 2006-09-18  9:09 Jorge Almeida
  2006-09-18  9:19 ` Matteo Pillon
  0 siblings, 1 reply; 3+ messages in thread
From: Jorge Almeida @ 2006-09-18  9:09 UTC (permalink / raw
  To: gentoo-user

I've seen somewhere a '*' in the password field of non-human users. I
think this is supposed to mean that user can't login. However, I didn't
find anything like that in gentoo's /etc/passwd (e.g., for user cron or
user sshd). Can someone comment on this matter? Is * deprecated? Of
course, these non-human users have /bin/false as shell, but extra
precautions wouldn't hurt...
Am I seeing something wrong?

-- 
Jorge Almeida
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [gentoo-user] x or * in /etc/passwd ?
  2006-09-18  9:09 [gentoo-user] x or * in /etc/passwd ? Jorge Almeida
@ 2006-09-18  9:19 ` Matteo Pillon
  2006-09-18  9:26   ` Jorge Almeida
  0 siblings, 1 reply; 3+ messages in thread
From: Matteo Pillon @ 2006-09-18  9:19 UTC (permalink / raw
  To: gentoo-user

On Mon, Sep 18, 2006 at 10:09:03AM +0100, Jorge Almeida wrote:
> I've seen somewhere a '*' in the password field of non-human users. I
> think this is supposed to mean that user can't login. However, I didn't
> find anything like that in gentoo's /etc/passwd (e.g., for user cron or
> user sshd). Can someone comment on this matter? Is * deprecated? Of
> course, these non-human users have /bin/false as shell, but extra
> precautions wouldn't hurt...
> Am I seeing something wrong?

Passwords are stored in /etc/shadow for security reasons:
 -rw-r--r-- /etc/passwd
 -rw------- /etc/shadow

>From shadow(5) manpage:
If the password field contains some string that is not valid result of
crypt(3), for instance ! or *, the user will not be able to use a unix
password to log in, subject to pam(7).

Bye.

-- 
 * Pillon Matteo
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [gentoo-user] x or * in /etc/passwd ?
  2006-09-18  9:19 ` Matteo Pillon
@ 2006-09-18  9:26   ` Jorge Almeida
  0 siblings, 0 replies; 3+ messages in thread
From: Jorge Almeida @ 2006-09-18  9:26 UTC (permalink / raw
  To: gentoo-user

On Mon, 18 Sep 2006, Matteo Pillon wrote:
>
> From shadow(5) manpage:
> If the password field contains some string that is not valid result of
> crypt(3), for instance ! or *, the user will not be able to use a unix
> password to log in, subject to pam(7).
>
OK, thank you. The * should appear in /etc/shadow, not in /etc/passwd.
-- 
Jorge Almeida
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2006-09-18  9:31 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-09-18  9:09 [gentoo-user] x or * in /etc/passwd ? Jorge Almeida
2006-09-18  9:19 ` Matteo Pillon
2006-09-18  9:26   ` Jorge Almeida

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox