Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Decode /etc/security/passwd

853 views
Skip to first unread message

Paul Bennett

unread,
Mar 16, 2001, 2:19:49 PM3/16/01
to

"F. Michael Orr" <mo...@ut.cc.va.us> wrote in message
news:1E158A9941D3F2D7.0C49414C...@lp.airnews.net...
> The canonical solution to this kind of situation is to run NIS.
>

Surely, the OPer could just expire all the users, or am I being dense?

I'd also suggest that a sensible security policy would recommend against
having the same passwords across multiple hosts.

Here is where I really betray my ignorance of AIX security:
What prevents the OPer from simply copying /etc/security/passwords to each
box?

Paul

Ian Northeast

unread,
Mar 16, 2001, 8:09:00 PM3/16/01
to
"F. Michael Orr" wrote:
>
> The canonical solution to this kind of situation is to run NIS.

Unless you want security.

NIS is very weak security. OK on a well protected LAN but otherwise
avoid. All users can see all the encrypted passwords, and anyone can run
crack.

If you must run NIS then junk IBM's mrgpwd (I might have misspelled
that) program and get the Perl script from the University of Duisberg (I
might have misspelled that too) which removes the system IDs from the
map.

Sorry about the probable misspellings but I have no access to news at
work because of a bizarre policy of my employer's.

Ron Parker

unread,
Mar 15, 2001, 1:20:26 PM3/15/01
to
Running AIX 4.3 on PowerPCs. I wish to create a separate database of
passwd file. I'd like users to be able to use their same AIX password.
Is there a utility to decode passwords in /etc/security/passwd file?
Thanks.

-ron

--
Ron Parker
Software Creations http://www.scbbs.com
TradeWinds Publishing http://www.intl-trade.com
TradePoint Los Angeles http://www.tradepointla.org
SiteDirector Security Server http://livepublish.scbbs.com
Civil War Online Library http://civilwar.scbbs.com


Duane Smith

unread,
Mar 15, 2001, 1:25:30 PM3/15/01
to
john the ripper is the easy to crack the passwords


alex

bob

unread,
Mar 15, 2001, 2:48:01 PM3/15/01
to
No, the encryption is one way. Suggest running Crack on it. I had to
fiddle a bit to get crack to compile but it works fine

brett

In article <3AB1093C...@scbbs.com>, sy...@scbbs.com says...

kper...@kingwoodcable.com

unread,
Mar 15, 2001, 5:20:24 PM3/15/01
to
Duane Smith <abr...@xomed.com> writes:

> john the ripper is the easy to crack the passwords

It just might take days, weeks, months, or even years....

Kent


-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 80,000 Newsgroups - 16 Different Servers! =-----

F. Michael Orr

unread,
Mar 16, 2001, 9:16:56 AM3/16/01
to
The canonical solution to this kind of situation is to run NIS.

"Ron Parker" <sy...@scbbs.com> wrote in message
news:3AB1093C...@scbbs.com...

0 new messages