-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 01/21/2012 05:06 PM, Don Juan wrote:
Then if the default is that then why are default system users, such as http mail postfix and similar not displaying the $1$ on the shadow file? Also according to the wiki it says des is the default and to upgrade the hashes out of the default. Am I not understanding it correctly in the wiki, and the users that I am talking about the hashes do not matter? Sorry feel confused at the moment.
A ! or x as the hash in /etc/shadow indicates that login for these user is not permitted. (Also you may login using ssh-keys). The CRYPT setting from /etc/default/passwd is only used if pam is not enabled. If it is enabled, the used configs are in /etc/pam.d (e.g. passwd, login etc.) which default nowadays to sha512.