System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

11i /etc/passwd for TRUSTED SYSTEM

SOLVED
Go to solution
john guardian
Super Advisor

11i /etc/passwd for TRUSTED SYSTEM

Could someone supply a real-life sample of what the /etc/passwd file looks like on a system that's been converted to Trusted Mode, please?

Thx.
4 REPLIES
Patrick Wallek
Honored Contributor
Solution

Re: 11i /etc/passwd for TRUSTED SYSTEM

Certainly. Here's an entry for root on an 11.31 trusted system:

root:*:0:3:atl6 root user:/root:/sbin/sh

The main / only difference is the '*' in what is the encrypted password field.

Jeff_Traigle
Honored Contributor

Re: 11i /etc/passwd for TRUSTED SYSTEM

Basically the same as one from a system that hasn't been converted. The only difference is that the password field contains an asterisk instead of the hashed password.

root:*:0:3::/root:/sbin/sh
--
Jeff Traigle
john guardian
Super Advisor

Re: 11i /etc/passwd for TRUSTED SYSTEM

Thx!
Ismail Azad
Esteemed Contributor

Re: 11i /etc/passwd for TRUSTED SYSTEM

Hi John,

Looks like you are doing some serious research on the trusted system. Just one question, what is it that you expect to see that's so different on /etc/passwd? Jus curious... :)

Well usernames, UIDs, GIDs, GECOS, home directory and the shell all remain the same. The umask value does change but there is one thing you will see in /etc/passwd when associated with a trusted system.

Every entry in /etc/passwd should have a * in the encrypted password field which is one indirect way to find that your system could be trusted.

Regards
Ismail Azad
Read, read and read... Then read again until you read "between the lines".....