* [gentoo-user] x or * in /etc/passwd ?
@ 2006-09-18 9:09 Jorge Almeida
2006-09-18 9:19 ` Matteo Pillon
0 siblings, 1 reply; 3+ messages in thread
From: Jorge Almeida @ 2006-09-18 9:09 UTC (permalink / raw
To: gentoo-user
I've seen somewhere a '*' in the password field of non-human users. I
think this is supposed to mean that user can't login. However, I didn't
find anything like that in gentoo's /etc/passwd (e.g., for user cron or
user sshd). Can someone comment on this matter? Is * deprecated? Of
course, these non-human users have /bin/false as shell, but extra
precautions wouldn't hurt...
Am I seeing something wrong?
--
Jorge Almeida
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [gentoo-user] x or * in /etc/passwd ?
2006-09-18 9:09 [gentoo-user] x or * in /etc/passwd ? Jorge Almeida
@ 2006-09-18 9:19 ` Matteo Pillon
2006-09-18 9:26 ` Jorge Almeida
0 siblings, 1 reply; 3+ messages in thread
From: Matteo Pillon @ 2006-09-18 9:19 UTC (permalink / raw
To: gentoo-user
On Mon, Sep 18, 2006 at 10:09:03AM +0100, Jorge Almeida wrote:
> I've seen somewhere a '*' in the password field of non-human users. I
> think this is supposed to mean that user can't login. However, I didn't
> find anything like that in gentoo's /etc/passwd (e.g., for user cron or
> user sshd). Can someone comment on this matter? Is * deprecated? Of
> course, these non-human users have /bin/false as shell, but extra
> precautions wouldn't hurt...
> Am I seeing something wrong?
Passwords are stored in /etc/shadow for security reasons:
-rw-r--r-- /etc/passwd
-rw------- /etc/shadow
>From shadow(5) manpage:
If the password field contains some string that is not valid result of
crypt(3), for instance ! or *, the user will not be able to use a unix
password to log in, subject to pam(7).
Bye.
--
* Pillon Matteo
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [gentoo-user] x or * in /etc/passwd ?
2006-09-18 9:19 ` Matteo Pillon
@ 2006-09-18 9:26 ` Jorge Almeida
0 siblings, 0 replies; 3+ messages in thread
From: Jorge Almeida @ 2006-09-18 9:26 UTC (permalink / raw
To: gentoo-user
On Mon, 18 Sep 2006, Matteo Pillon wrote:
>
> From shadow(5) manpage:
> If the password field contains some string that is not valid result of
> crypt(3), for instance ! or *, the user will not be able to use a unix
> password to log in, subject to pam(7).
>
OK, thank you. The * should appear in /etc/shadow, not in /etc/passwd.
--
Jorge Almeida
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2006-09-18 9:31 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-09-18 9:09 [gentoo-user] x or * in /etc/passwd ? Jorge Almeida
2006-09-18 9:19 ` Matteo Pillon
2006-09-18 9:26 ` Jorge Almeida
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox