Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 18 Dec 2003 11:39:18 -0600
From:      "Eric F Crist" <ecrist@adtechintegrated.com>
To:        "'Rhys John'" <elite_bizkit@hotmail.com>, <freebsd-questions@freebsd.org>
Subject:   RE: master.passwd -- securing
Message-ID:  <007d01c3c58d$dd91db10$6401a8c0@Nomad>
In-Reply-To: <LAW10-F49DmiMzaABwu00044cd3@hotmail.com>

next in thread | previous in thread | raw e-mail | index | archive | help
Why do you want to do this?  master.passwd already is inherantly secure.
The /etc/passwd file is what's used by most programs, and master.passwd
only for login purposes.  You have to have the password stored somewhere
or there can be no authentication, unless you go with some sort of
hardware credential.

Eric F Crist
President
AdTech Integrated Systems, Inc
(612) 998-3588



-----Original Message-----
From: owner-freebsd-questions@freebsd.org
[mailto:owner-freebsd-questions@freebsd.org] On Behalf Of Rhys John
Sent: Thursday, December 18, 2003 5:44 AM
To: freebsd-questions@freebsd.org
Subject: Re: master.passwd -- securing


Both accounts are now active but i would like to remove the encrypted
password from master.passwd and replace it with a *. Is this possible
with
"vipw"?

Thanks for your reply hugle

>From: hugle <hugle@vkt.lt>
>Reply-To: hugle <hugle@vkt.lt>
>To: freebsd-questions@freebsd.org
>Subject: Re: master.passwd -- securing
>Date: Thu, 18 Dec 2003 03:39:18 -0800
>
>RJ> Ive been playing with "vipw" trying to change passwords into "*"
>RJ> for a slightly higher level of security but ran into some very big
>RJ> problems.
>From
>RJ> reading through the FreeBSD handbook it seemed all i had to do was
>replace
>RJ> the encrypted password with *, which is what i did. I thought it
>RJ> seemed
>a
>RJ> bit odd but continued anyway. Foolishly (although i was quite
>RJ> tired) i
>did
>RJ> this to both my user account and root. So they both had * as their
>password
>RJ> and looked the same as every other entry in the file. I saved it
>RJ> and
>"vipw"
>RJ> updated the database so i thought all was well and logged off to
>check...
>RJ> big mistake! The net result of this was not good, i couldnt access
>RJ> my
>user
>RJ> account or root :( Anyway i had to cut the power to my PC since i
>couldnt
>RJ> shut it down because i was locked out. After that i went into
>RJ> single
>user
>RJ> mode and changed the passwords back and its working now but i cant
>RJ> hide
>the
>RJ> passwords. So i guess after all this rambling my question is how to

>RJ> i
>secure
>RJ> the password file? How do i change from the encrypted password to *
>without
>RJ> screwing over my system? Any help would by much appreciated
>
>try doing that:
>#Forget your root pw?
>1. Reboot. when you see the "boot" prompt, type boot -s and hit enter
>2. run this command: fsck -p / && mount -u / 3. use the `passwd`
>command to set a password for root 4. reboot, done
>
>hope that helps..
>
>
>_______________________________________________
>freebsd-questions@freebsd.org mailing list
>http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>To unsubscribe, send any mail to
>"freebsd-questions-unsubscribe@freebsd.org"

_________________________________________________________________
Find a cheaper internet access deal - choose one to suit you.
http://www.msn.co.uk/internetaccess

_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"freebsd-questions-unsubscribe@freebsd.org"






Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?007d01c3c58d$dd91db10$6401a8c0>