Re: Authenticating encrypted passwords

From: Martin Brooks <martin@dont-contact.us>
Date: Fri, 10 Mar 2000 08:16:53 +0000

> daizhuan wrote:
> Please notice that your should
> change your /etc/shadow's mode(chmod 444 /etc/shadow),then it can be
> read by your users.
>
> /riser

Please note that doing what this chap suggests is a huge security hole.
You're effectively bypassing the entire point of using shadow password
in the first place. I strongly recommend that you do not do what is
suggested.

-- 
Martin Brooks, Systems Administrator
martin@gointernet.co.uk
---------------------------
Go Internet Ltd
36 Gloucester Avenue
NW1 7BB London UK
Phone +44-(0)20-7419 0001
Fax +44-(0)20-7419 6519
Received on Fri Mar 10 2000 - 01:19:35 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:52:01 MST