HPE Community
Operating System - HP-UX
1825642 Members
4202 Online
109683 Solutions
New Discussion

understanding /etc/passwd.

 
SOLVED
Go to solution
Ganesan R
Honored Contributor

‎03-11-2009 05:56 AM

‎03-11-2009 05:56 AM

Re: understanding /etc/passwd.

Hi Senthilkumar,

Both shadow and trusted system has it's own features.

shadow password is mainly for shadowing the passwords. It encrypts and storing some place other than /etc/password which others cannot even see it.

Whereas trusted system has features like password policy, account restrictions, auditing and so many.

Best wishes,

Ganesh.
Reply
Patrick Wallek
Honored Contributor

‎03-11-2009 05:57 AM

‎03-11-2009 05:57 AM

Re: understanding /etc/passwd.

/etc/passwd is always an option. Not a good option for security, but an option. This has been available since the beginnings of HP-UX.

Trusted systems were available with HP-UX 10.20 and continue to be available even with 11.31.

Shadow passwords became available with HP-UX 11.11 with an additional software package that you had to install separately. Starting with 11.23, that option came standard with the OS.

I don't know about /secure/etc/passwd. I'm not familiar with that option.

From my recollections:

/etc/passwd -- ALL HP-UX versions

Trusted systems -- /tcb/ structure -- HP-UX 10.20 and later (though this will be desupported in future releases)

Shadow Passwords -- HP-UX 11.11 (with additional software instaleld) -- HP-UX 11.23 and later as standard functionality
Reply
Ganesan R
Honored Contributor

‎03-11-2009 06:14 AM

‎03-11-2009 06:14 AM

Re: understanding /etc/passwd.

Hi again,

Not only shadow and trusted config. There are lot of security products available for HP
If you want to know more about which product support on which version refer this table. 11iV3 not included.

HP-UX 11.00 11i v1 (11.11) 11i v2 (11.23)
--------------------------------------------------------------------------
Standard System Security x x x
/etc/default/security x x x
Trusted Systems x x x
Shadow Passwords x x

HP-UX Security Containment x
SMSE x
RBAC x

Boot Authenticator x x
Bastille x x x
HIDS x x
Random Number Generator x x
Best wishes,

Ganesh.
Reply
Ganesan R
Honored Contributor

‎03-11-2009 06:20 AM

‎03-11-2009 06:20 AM

Re: understanding /etc/passwd.

To be clear...

HP-UX 11.00 11.11 11.23
-----------------------------------------------------
Standard System Security Y Y Y
/etc/default/security Y Y Y
Trusted Systems Y Y Y
Shadow Passwords N Y Y

HP-UX Security Containment N N Y
SMSE N N Y
RBAC N N Y

Boot Authenticator N Y Y
Bastille Y Y Y
HIDS N Y Y
Random Number Generator N Y Y
Best wishes,

Ganesh.
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.