HPE Community
Operating System - HP-UX
1834093 Members
2229 Online
110063 Solutions
New Discussion

Re: what is * in /etc/passwd

 
SOLVED
Go to solution
doug mielke
Respected Contributor

‎01-24-2005 06:55 AM

‎01-24-2005 06:55 AM

what is * in /etc/passwd

Auditors question: in the /etc/passwd file, no shadow file being used.

What does a * in the password field mean?

In my copy of the Poniatowski HP-UX 11.x system administration and toolkit, page75, it explains that:
"If an asterisk appears in this field, the account can't be used."

Does this mean that no password will satisfy login or crypt requirements, but that root can su to it, create files with that users ownership, just like a normal account?
Is it that the account could be used, but only by root?

0 Kudos
7 REPLIES 7
Patrick Wallek
Honored Contributor

‎01-24-2005 06:58 AM

‎01-24-2005 06:58 AM

Solution

Re: what is * in /etc/passwd

A '*' is an invalid password. The '*' is most commonly used, but it could be any other single character as well.

You are correct. You will not be able to log into that account directly, but the root user can su to it (su - username). The account can still own files and daemons can be run by those ids (lp is an example).

0 Kudos
Florian Heigl (new acc)
Honored Contributor

‎01-24-2005 06:59 AM

‎01-24-2005 06:59 AM

Re: what is * in /etc/passwd

When no /etc/shadow exists, this account is in fact locked out and will be only usable by root as You described it.
yesterday I stood at the edge. Today I'm one step ahead.
0 Kudos
A. Clay Stephenson
Acclaimed Contributor

‎01-24-2005 06:59 AM

‎01-24-2005 06:59 AM

Re: what is * in /etc/passwd

Actually, any single character in the passwd hash field creates an impossible hash and the account is disabled. By convention, the asterisk is used to denote this state but any other single character would serve equally well.
If it ain't broke, I can fix that.
0 Kudos
Biswajit Tripathy
Honored Contributor

‎01-24-2005 07:00 AM

‎01-24-2005 07:00 AM

Re: what is * in /etc/passwd

'*' as the passwd in passwd file means you can't log
into the system using that username. Typically used
for anonymous FTP account or www account on your
system that does not require anyone to login.

- Biswajit
:-)
0 Kudos
Rick Garland
Honored Contributor

‎01-24-2005 07:00 AM

‎01-24-2005 07:00 AM

Re: what is * in /etc/passwd

Not a trusted system - no shadow passwd file.

The * in the 2nd field of the means the account is disabled.

Login to that account and you will be unable.
root can do an 'su - '

If a trusted system, a shadow passwd file in use. Downloading this file and try to run through a passwd cracker will yield nothing.
0 Kudos
Geoff Wild
Honored Contributor

‎01-24-2005 07:32 AM

‎01-24-2005 07:32 AM

Re: what is * in /etc/passwd

Where is the *?

On a Trusted system, field 2 is the Encrypted password field, held by an asterisk instead of an actual password.

In untrusted mode this means the account is locked, the encrypted password is replaced with a *

Rgds...Geoff
Proverbs 3:5,6 Trust in the Lord with all your heart and lean not on your own understanding; in all your ways acknowledge him, and he will make all your paths straight.
0 Kudos
doug mielke
Respected Contributor

‎01-24-2005 08:36 AM

‎01-24-2005 08:36 AM

Re: what is * in /etc/passwd

thanks all. That's exactly what I needed.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.