Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!tut.cis.ohio-state.edu!ucbvax!WLV.IMSD.CONTEL.COM!sms
From: sms@WLV.IMSD.CONTEL.COM (Steven M. Schultz)
Newsgroups: comp.protocols.tcp-ip
Subject: Re: abolishing /etc/passwd (was Re: anonymous ftp, and the dangers thereof)
Message-ID: <9006060704.AA02343@WLV.IMSD.CONTEL.COM>
Date: 6 Jun 90 07:04:36 GMT
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The Internet
Lines: 13

>From: att!cbnewsh!wcs@ucbvax.Berkeley.EDU  (Bill Stewart erebus.att.com!wcs)
>References: <6703@blake.acs.washington.edu>, <28764@ut-emx.UUCP>
>
>	/etc/passwd has become the traditional location for user-info
>	other than passwords, so of course it needs to be kept,
>	but I agree with the shadow-password approach that puts 
>	(encrypted) passwords in a non-world-readable file.

	just a "thought" - if the (shadow)file is non-world readable and the
	system is administered "correctly" then why bother with
	encryption at all ;-)

	Steven