From owner-freebsd-questions@FreeBSD.ORG Thu Dec 18 03:44:16 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4441016A4CE for ; Thu, 18 Dec 2003 03:44:16 -0800 (PST) Received: from hotmail.com (law10-f49.law10.hotmail.com [64.4.15.49]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3271843D1F for ; Thu, 18 Dec 2003 03:44:15 -0800 (PST) (envelope-from elite_bizkit@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Thu, 18 Dec 2003 03:44:14 -0800 Received: from 82.133.115.253 by lw10fd.law10.hotmail.msn.com with HTTP; Thu, 18 Dec 2003 11:44:14 GMT X-Originating-IP: [82.133.115.253] X-Originating-Email: [elite_bizkit@hotmail.com] X-Sender: elite_bizkit@hotmail.com From: "Rhys John" To: freebsd-questions@freebsd.org Date: Thu, 18 Dec 2003 11:44:14 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 18 Dec 2003 11:44:14.0952 (UTC) FILETIME=[43137E80:01C3C55C] Subject: Re: master.passwd -- securing X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Dec 2003 11:44:16 -0000 Both accounts are now active but i would like to remove the encrypted password from master.passwd and replace it with a *. Is this possible with "vipw"? Thanks for your reply hugle >From: hugle >Reply-To: hugle >To: freebsd-questions@freebsd.org >Subject: Re: master.passwd -- securing >Date: Thu, 18 Dec 2003 03:39:18 -0800 > >RJ> Ive been playing with "vipw" trying to change passwords into "*" for a >RJ> slightly higher level of security but ran into some very big problems. >From >RJ> reading through the FreeBSD handbook it seemed all i had to do was >replace >RJ> the encrypted password with *, which is what i did. I thought it seemed >a >RJ> bit odd but continued anyway. Foolishly (although i was quite tired) i >did >RJ> this to both my user account and root. So they both had * as their >password >RJ> and looked the same as every other entry in the file. I saved it and >"vipw" >RJ> updated the database so i thought all was well and logged off to >check... >RJ> big mistake! The net result of this was not good, i couldnt access my >user >RJ> account or root :( Anyway i had to cut the power to my PC since i >couldnt >RJ> shut it down because i was locked out. After that i went into single >user >RJ> mode and changed the passwords back and its working now but i cant hide >the >RJ> passwords. So i guess after all this rambling my question is how to i >secure >RJ> the password file? How do i change from the encrypted password to * >without >RJ> screwing over my system? Any help would by much appreciated > >try doing that: >#Forget your root pw? >1. Reboot. when you see the "boot" prompt, type boot -s and hit enter >2. run this command: fsck -p / && mount -u / >3. use the `passwd` command to set a password for root >4. reboot, done > >hope that helps.. > > >_______________________________________________ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to >"freebsd-questions-unsubscribe@freebsd.org" _________________________________________________________________ Find a cheaper internet access deal - choose one to suit you. http://www.msn.co.uk/internetaccess