Yet another Solaris (UNIX) question. v./etc/group

Discussion in 'OT Technology' started by trouphaz, Jun 17, 2009.

  1. trouphaz

    trouphaz New Member

    Joined:
    Sep 22, 2003
    Messages:
    2,666
    Likes Received:
    0
    Anyone know what an * in the /etc/group password location will do?

    so, if you have an entry:
    accounting:*:2019:jim,bob,asshat

    What does the * mean? I've heard you can throw an encrypted password in there or you can leave it blank, but I'm not sure what the * will do.
     
  2. rawko

    rawko OT Supporter

    Joined:
    May 22, 2005
    Messages:
    59
    Likes Received:
    0
    i dunno about the /etc/group file but in the /etc/passwd file, a * refers means it has a shadowed password which is in the /etc/shadow file or elsewhere depending on the distro
     
  3. crontab

    crontab (uid = 0)

    Joined:
    Nov 14, 2000
    Messages:
    23,446
    Likes Received:
    12
    According to this:

    http://www.bga.org/~lessem/psyc5112/usail/tasks/users-groups/users-groups.html

    The second field contains the encrypted group password and is frequently not used.

    Although a blank password field in /etc/group is not as much of a security risk as it is in /etc/passwd, it is still not a good idea to leave an empty field. By gaining access to the right group a user could get write privileges for the /etc/passwd file.
    The convention on accounts that have no passwords is to place an asterisk in the password field. On most systems the asterisk is considered an invalid or illegal password and will prevent anyone from logging into the account.
     

Share This Page