On Mon, 2 Jun 2014 17:23:03 +0100
Dimitris Papastamos <sin_AT_2f30.org> wrote:
> I don't care personally. We should definitely add /etc/passwd support
> to su though because currently it only works with /etc/shadow.
Well, I prefer /etc/passwd, given it gives a false feeling of security
using the shadow-file.
In reality, it's a solution for a very unimportant issue.
If your password is strong, having the hashes won't help any attacker.
On the other hand, having a weak password, the shadow-file doesn't save
you from a breach.
Cheers
FRIGN
--
FRIGN <dev_AT_frign.de>
Received on Mon Jun 02 2014 - 18:41:45 CEST