Path: utzoo!attcan!uunet!husc6!mailrus!nrl-cmf!cmcl2!adm!xadmx!rbj@nav.icst.nbs.gov
From: rbj@nav.icst.nbs.gov (Root Boy Jim)
Newsgroups: comp.unix.wizards
Subject: How to stop future viruses.
Message-ID: <17575@adm.BRL.MIL>
Date: 17 Nov 88 17:58:37 GMT
Sender: news@adm.BRL.MIL
Lines: 34

? From: Peter da Silva <peter@ficc.uu.net>

? > For example, what is the shadow file called

? /etc/shadow

My first reaction is not to put it in /etc, or hide it with a dot, or
call it something weird, but that doesn't really accomplish much.

? > , what is its format,

? Same as passwd, but only the username and password are filled in.

Why not fill it all in?

? > what sort of stuff is left in the password field in /etc/passwd,

? The letter 'x'.

Here I disagree. It just announces the existence of the shadow file.
A better thing to do would be encrypt the password as usual, *and then
select a random salt* to replace the salt it was encrypted with. That
way, naive people can crack away to no avail.

I note that you are reporting things the way they *are*; my comments
are IMHO the way they *should be*.

? Peter da Silva  `-_-'  Ferranti International Controls Corporation
? "Have you hugged  U  your wolf today?"     uunet.uu.net!ficc!peter
? Disclaimer: My typos are my own damn business.   peter@ficc.uu.net

	(Root Boy) Jim Cottrell	(301) 975-5688
	<rbj@nav.icst.nbs.gov> or <rbj@icst-cmr.arpa>
	Crackers and Works -- Breakfast of Champions!