Date: Thu, 18 Dec 2003 11:39:18 -0600 From: "Eric F Crist" <ecrist@adtechintegrated.com> To: "'Rhys John'" <elite_bizkit@hotmail.com>, <freebsd-questions@freebsd.org> Subject: RE: master.passwd -- securing Message-ID: <007d01c3c58d$dd91db10$6401a8c0@Nomad> In-Reply-To: <LAW10-F49DmiMzaABwu00044cd3@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Why do you want to do this? master.passwd already is inherantly secure. The /etc/passwd file is what's used by most programs, and master.passwd only for login purposes. You have to have the password stored somewhere or there can be no authentication, unless you go with some sort of hardware credential. Eric F Crist President AdTech Integrated Systems, Inc (612) 998-3588 -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of Rhys John Sent: Thursday, December 18, 2003 5:44 AM To: freebsd-questions@freebsd.org Subject: Re: master.passwd -- securing Both accounts are now active but i would like to remove the encrypted password from master.passwd and replace it with a *. Is this possible with "vipw"? Thanks for your reply hugle >From: hugle <hugle@vkt.lt> >Reply-To: hugle <hugle@vkt.lt> >To: freebsd-questions@freebsd.org >Subject: Re: master.passwd -- securing >Date: Thu, 18 Dec 2003 03:39:18 -0800 > >RJ> Ive been playing with "vipw" trying to change passwords into "*" >RJ> for a slightly higher level of security but ran into some very big >RJ> problems. >From >RJ> reading through the FreeBSD handbook it seemed all i had to do was >replace >RJ> the encrypted password with *, which is what i did. I thought it >RJ> seemed >a >RJ> bit odd but continued anyway. Foolishly (although i was quite >RJ> tired) i >did >RJ> this to both my user account and root. So they both had * as their >password >RJ> and looked the same as every other entry in the file. I saved it >RJ> and >"vipw" >RJ> updated the database so i thought all was well and logged off to >check... >RJ> big mistake! The net result of this was not good, i couldnt access >RJ> my >user >RJ> account or root :( Anyway i had to cut the power to my PC since i >couldnt >RJ> shut it down because i was locked out. After that i went into >RJ> single >user >RJ> mode and changed the passwords back and its working now but i cant >RJ> hide >the >RJ> passwords. So i guess after all this rambling my question is how to >RJ> i >secure >RJ> the password file? How do i change from the encrypted password to * >without >RJ> screwing over my system? Any help would by much appreciated > >try doing that: >#Forget your root pw? >1. Reboot. when you see the "boot" prompt, type boot -s and hit enter >2. run this command: fsck -p / && mount -u / 3. use the `passwd` >command to set a password for root 4. reboot, done > >hope that helps.. > > >_______________________________________________ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to >"freebsd-questions-unsubscribe@freebsd.org" _________________________________________________________________ Find a cheaper internet access deal - choose one to suit you. http://www.msn.co.uk/internetaccess _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?007d01c3c58d$dd91db10$6401a8c0>