[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: documentation/3705: adduser documentation
The following reply was made to PR documentation/3705; it has been noted by GNATS.
From: Tom Cosgrove <firstname.lastname@example.org>
Subject: Re: documentation/3705: adduser documentation
Date: Tue, 9 Mar 2004 14:16:57 +0000 (GMT)
>>> Morgreh Loneda 9-Mar-04 03:14 >>>
> >Synopsis: adduser man page -unencryption option description is
> man adduser
> -unencrypted description currently states "Causes the program
> to assume the password given in batch mode is unencrypted. The
> password will be encrypted before it's added to the password
> file. Use of this option will leave username and cleartext
> password displayable for any user."
This is correct. The parameters are visible in the process list.
> In fact, I believe the last sentence should be something more to
> the effect of, "Failure to use this option in batch more will leave
> username and cleartext password displayable for any user in the
> /etc/passwd file."
No, because without this option the password should be supplied in
encrypted form, as made clear by the man page:
By default the password is assumed to already be properly encrypted.