• FAQs
• Articles
• Tutorials
• Web Tools
• Reference
• Blog
• Proxy
• Software
• Cell Phones

• Unix FAQs
• How do I find a Unix command?
• What is the history of Unix?
• What are basic Unix commands?
• What is a Unix shell?
• What is a Unix script?
• How do Unix file permissions work?
• Where can I find a Unix tutorial?
• Where can I download Unix?
• Where can I get a Unix emulator?
• What is sudo?
• How do I audit Unix passwords?
• What is password shadowing?
• What is password aging?
• What is NIS (yp)?
• What is a restricted shell?
• What security problems exist with SUID script and programs?
• How do Unix system log files work?
• What is a rootkit?
• How do Unix timestamps work?
• What is Linux?
• What are bootable Linux distributions?
• How do I setup a Linux file server?
• How do I change to directories with strange characters in them?
• What is a daemon?
• How can I change my Unix password?
• How do I change my shell?
• What is .profile?
• What is .login?
• What is a run level?
• How do I set an environment variable?
• What is UMASK?
• What are Unix signals?
• How do I change a hostname on Solaris?
• How do I change an IP address on Solaris?
• What are Pluggable Authentication Modules?
• How do I capture a Unix terminal session?
• How do I list Unix users?
• How do I backup Unix?
• How do I create a cron job?
• How do I use the Unix find command?
• How do I use the Unix sort command?
• How do I use the Unix grep command?
• How do I use the Unix top command?
• How do I install Linux on my Xbox?
• How do I copy Unix files to Windows?
• How Do I Tell What Shell I am Using?
• How Do I Find Out CPU Utilization in UNIX?
• How Do I Copy a Directory from DOS to UNIX?
• Main Menu
• » Networking
• » Physical Layer
• » Data Link Layer
• » Network Layer
• » Network Security
• » Wireless Networks
• » VoIP
• » Telephony
• » Mobile Telephony
• » Electronics
• » Radio
• » Television
• » Cryptology
• » Passwords
• » Smart Cards
• » Privacy
• » Malware
• » Vulnerabilities
• » Unix
• » Macintosh
• » Microsoft Windows
• » The Web
• » Web Publishing
• » E-mail
• » Instant Messaging
• » Databases
• » Computer Hardware
• » CPU's
• » Memory
• » Storage
• » Video
• » Audio
• » Multimedia
• » Satellite
• » Java
• » IT Management
• » Science
• » Miscellaneous

What is Password Shadowing?

Password shadowing is a security system where the encrypted password field of /etc/passwd is replaced with a special token and the encrypted password is stored in a separate file (or files) which is not readable by normal system users.

The getpwent() Unix Password Shadowing Vulnerability

On older Unix systems, password shadowing was often defeated by using a program that made successive calls to getpwent() to obtain the entire password file. Modern Unix systems are not susceptible to this attack.

Example:

#include <pwd.h>
main()
{
struct passwd *p;
while(p=getpwent())
printf("%s:%s:%d:%d:%s:%s:%s\n", p->pw_name, p->pw_passwd,
p->pw_uid, p->pw_gid, p->pw_gecos, p->pw_dir, p->pw_shell);
}

Unix Password Shadowing on Various Unix Implementations

Some Unix password shadowing schemes store the shadowed passwords in a single file, while others utilize a hierarchy of multiple files.

Token is the text placed in the second field the /etc/passwd file.

Purchase these excellent books on Unix security and administration at Amazon.com

Bookmark What is Password Shadowing? Latest Blog Posts Windows 7 Forum Boston College: Ability to Use a Command Line is a Sign of Criminal Activity Google Hacked? Recycle your old phone – Make some money, and save the environment too! SourceForge vs. Freshmeat Fastest Web Browser: Google Chrome New Webmaster Forum Ubuntu Security Tools Terrorists Go Hi-Tech How to Dry a Cell Phone That's Come in Contact with Water English German Spanish French Italian Portuguese Russian Dutch Greek Hindi Japanese Korean Chinese Chinese (Simplified) Arabic Copyright 2009 Tech-FAQ. All rights reserved. Privacy Policy.