From owner-freebsd-questions@FreeBSD.ORG Tue Feb 17 19:00:08 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BD71C10656F4 for ; Tue, 17 Feb 2009 19:00:08 +0000 (UTC) (envelope-from ipfreak@yahoo.com) Received: from web52103.mail.re2.yahoo.com (web52103.mail.re2.yahoo.com [206.190.48.106]) by mx1.freebsd.org (Postfix) with SMTP id 3C7E18FC1A for ; Tue, 17 Feb 2009 19:00:08 +0000 (UTC) (envelope-from ipfreak@yahoo.com) Received: (qmail 35548 invoked by uid 60001); 17 Feb 2009 19:00:01 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Message-ID; b=Fs3/el2VwVv+mxU5Ruovp2flZr6Gb1zc+N9Kbw8RU+n9RXELaRubd7peSi/De5ZwJABRzZNBgLXxjUf8zCWUGetSA1CSebgxvjsV1A3vxQ/T0pl8ugFBsLs5BykOFqjRHnJpxgFJEl6uMzLeo5V0MBoD5TsFoh2fuLgiLoygHdo=; X-YMail-OSG: z2LEGc8VM1k7MaNsTkfFDjWUj.cUcW0HHVgRWbeeQnJ.XOzQDrkTZu4Gc7DnwvdEVly9p7wWZAFrdLeCvFTFfxDOHeCFuiY2tbgRU.oaHu1xVtHy5sBwLji1YCIL5ticTutWcy.n9o.pMX9sfycHtEXfG0saUjO03GohfjIVep6aZ9MBTaH9OO25apbYVcx3QJJf2Fk1.SDw7vh44w-- Received: from [134.207.53.14] by web52103.mail.re2.yahoo.com via HTTP; Tue, 17 Feb 2009 10:59:48 PST X-Mailer: YahooMailWebService/0.7.260.1 Date: Tue, 17 Feb 2009 10:59:48 -0800 (PST) From: gahn To: Chuck Swiger In-Reply-To: <6C26B117-BB84-44DC-AF2D-F0036D68C248@mac.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Message-ID: <709908.30543.qm@web52103.mail.re2.yahoo.com> Cc: freebsd general questions Subject: Re: freebsd and freeradius X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: ipfreak@yahoo.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Feb 2009 19:00:09 -0000 Thanks Chuck: Yes I checked /etc/master.passwd. it has no "#" except first two lines: # $FreeBSD: src/etc/master.passwd,v 1.40.18.1 2008/11/25 02:59:29 kensmith Exp $ # ... ... tester:$1$qM9hT7CJ$vUby0fxVPjgwH1JNe5j45.:2002:20::0:0:User &:/home/tester:/usr/local/bin/bash --- On Tue, 2/17/09, Chuck Swiger wrote: > From: Chuck Swiger > Subject: Re: freebsd and freeradius > To: ipfreak@yahoo.com > Cc: "freebsd general questions" > Date: Tuesday, February 17, 2009, 10:54 AM > On Feb 17, 2009, at 10:44 AM, gahn wrote: > > No, there is no # in any lines of /etc/passwd. > > Did you check /etc/master.passwd also? > > > Btw, what is this "src/etc/master.passwd" > for? > > A line like: > > # $FreeBSD: src/etc/master.passwd,v 1.40 2005/06/06 > 20:19:56 brooks Exp $ > > ...indicates the CVS revision that the passwd file comes > from. It's mildly interesting when you run mergemaster > -iU or the like to update to a newer version of the OS to > pick up any default system accounts or changes which have > been made. > > If you're instead asking why there is a /etc/passwd > versus master.passwd, the former is historically expected > and is supposed to be world-readable, but the traditional > practice of putting encrypted passwords in there made > automated password cracking relatively feasible. Various > UNIXes responded to things like "John the Ripper" > by creating a second password database which contained the > encrypted passwords, called /etc/shadow in some places, or > /etc/master.passwd on FreeBSD, and having that only readable > by root. The old /etc/passwd file would then have an > "x" or "*" for the passwd field. > > Regards, > ---Chuck