In a recent note, Staller, Allan said: > Date: Wed, 2 Nov 2005 10:25:47 -0600 > > <The auditor wanted /etc/passwd.> > > IIRC on a traditional *NIX system, /etc/passwd contains the password in clear > text. > The act of giving the auditor a copy (hardcopy or other) would be an audit > violation. > No. Encrypted. Otherwise everyone would know everyone's password. And recent UNIX systems, in response to improvements in cryptanalysis have moved the passwords out of /etc/passwd into a protected file or data base.
-- gil -- StorageTek INFORMATION made POWERFUL ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
