From owner-freebsd-questions@FreeBSD.ORG Tue Feb 17 18:54:47 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 356241065678 for ; Tue, 17 Feb 2009 18:54:47 +0000 (UTC) (envelope-from cswiger@mac.com) Received: from mail-out4.apple.com (mail-out4.apple.com [17.254.13.23]) by mx1.freebsd.org (Postfix) with ESMTP id 184718FC22 for ; Tue, 17 Feb 2009 18:54:46 +0000 (UTC) (envelope-from cswiger@mac.com) Received: from relay11.apple.com (relay11.apple.com [17.128.113.48]) by mail-out4.apple.com (Postfix) with ESMTP id B07185586461; Tue, 17 Feb 2009 10:54:46 -0800 (PST) Received: from relay11.apple.com (unknown [127.0.0.1]) by relay11.apple.com (Symantec Brightmail Gateway) with ESMTP id 938572807D; Tue, 17 Feb 2009 10:54:46 -0800 (PST) X-AuditID: 11807130-ac098bb000000fcd-98-499b07f62a2e Received: from cswiger1.apple.com (cswiger1.apple.com [17.227.140.124]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by relay11.apple.com (Apple SCV relay) with ESMTP id 4D89F2808D; Tue, 17 Feb 2009 10:54:46 -0800 (PST) Message-Id: <6C26B117-BB84-44DC-AF2D-F0036D68C248@mac.com> From: Chuck Swiger To: ipfreak@yahoo.com In-Reply-To: <644194.85690.qm@web52110.mail.re2.yahoo.com> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v930.3) Date: Tue, 17 Feb 2009 10:54:46 -0800 References: <644194.85690.qm@web52110.mail.re2.yahoo.com> X-Mailer: Apple Mail (2.930.3) X-Brightmail-Tracker: AAAAAA== Cc: freebsd general questions Subject: Re: freebsd and freeradius X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Feb 2009 18:54:47 -0000 On Feb 17, 2009, at 10:44 AM, gahn wrote: > No, there is no # in any lines of /etc/passwd. Did you check /etc/master.passwd also? > Btw, what is this "src/etc/master.passwd" for? A line like: # $FreeBSD: src/etc/master.passwd,v 1.40 2005/06/06 20:19:56 brooks Exp $ ...indicates the CVS revision that the passwd file comes from. It's mildly interesting when you run mergemaster -iU or the like to update to a newer version of the OS to pick up any default system accounts or changes which have been made. If you're instead asking why there is a /etc/passwd versus master.passwd, the former is historically expected and is supposed to be world-readable, but the traditional practice of putting encrypted passwords in there made automated password cracking relatively feasible. Various UNIXes responded to things like "John the Ripper" by creating a second password database which contained the encrypted passwords, called /etc/shadow in some places, or /etc/master.passwd on FreeBSD, and having that only readable by root. The old /etc/passwd file would then have an "x" or "*" for the passwd field. Regards, -- -Chuck