From owner-freebsd-questions@FreeBSD.ORG  Thu Dec 18 03:28:38 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5057C16A4CE
	for <freebsd-questions@freebsd.org>;
	Thu, 18 Dec 2003 03:28:38 -0800 (PST)
Received: from hotmail.com (law10-f101.law10.hotmail.com [64.4.15.101])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 9735A43D4B
	for <freebsd-questions@freebsd.org>;
	Thu, 18 Dec 2003 03:28:36 -0800 (PST)
	(envelope-from elite_bizkit@hotmail.com)
Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC;
	 Thu, 18 Dec 2003 03:28:36 -0800
Received: from 82.133.115.253 by lw10fd.law10.hotmail.msn.com with HTTP;
	Thu, 18 Dec 2003 11:28:36 GMT
X-Originating-IP: [82.133.115.253]
X-Originating-Email: [elite_bizkit@hotmail.com]
X-Sender: elite_bizkit@hotmail.com
From: "Rhys John" <elite_bizkit@hotmail.com>
To: freebsd-questions@freebsd.org
Date: Thu, 18 Dec 2003 11:28:36 +0000
Mime-Version: 1.0
Content-Type: text/plain; format=flowed
Message-ID: <Law10-F101X6eDUsca10000d2ab@hotmail.com>
X-OriginalArrivalTime: 18 Dec 2003 11:28:36.0420 (UTC)
	FILETIME=[13AAE040:01C3C55A]
Subject: master.passwd -- securing
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Dec 2003 11:28:38 -0000

Ive been playing with "vipw" trying to change passwords into "*" for a 
slightly higher level of security but ran into some very big problems. From 
reading through the FreeBSD handbook it seemed all i had to do was replace 
the encrypted password with *, which is what i did. I thought it seemed a 
bit odd but continued anyway. Foolishly (although i was quite tired) i did 
this to both my user account and root. So they both had * as their password 
and looked the same as every other entry in the file. I saved it and "vipw" 
updated the database so i thought all was well and logged off to check... 
big mistake! The net result of this was not good, i couldnt access my user 
account or root :( Anyway i had to cut the power to my PC since i couldnt 
shut it down because i was locked out. After that i went into single user 
mode and changed the passwords back and its working now but i cant hide the 
passwords. So i guess after all this rambling my question is how to i secure 
the password file? How do i change from the encrypted password to * without 
screwing over my system? Any help would by much appreciated

- BiZKiT

_________________________________________________________________
Express yourself with cool emoticons - download MSN Messenger today! 
http://www.msn.co.uk/messenger