June 2003
Intermediate to advanced
336 pages
8h 54m
English
Content preview from Linux Security CookbookBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
9.3. Finding Accounts with No Password
Problem
You want to detect local login accounts that can be accessed without a password.
Solution
# awk -F: '$2 == "" { print $1, "has no password!" }' /etc/shadowDiscussion
The worst kind of password is no password at all, so you want to make sure every account has one. Any good password-cracking program can be employed here—they often try to find completely unprotected accounts first—but you can also look for missing passwords directly.
Encrypted passwords are stored in the second field of each entry in the shadow password database, just after the username. Fields are separated by colons.
Note that the shadow password file is readable only by superusers.
See Also
shadow(5).