[CentOS] Another Fedora decision

Thu Feb 5 22:19:10 UTC 2015
Keith Keller <kkeller at wombat.san-francisco.ca.us>

On 2015-02-04, Always Learning <centos at u64.u22.net> wrote:
> On C5 the default appears to be:-
>
> 	-rw-r--r-- 1 root root 1220 Jan 31 03:04 shadow

It is much more likely that someone has screwed up your system.  I think
even CentOS 4 had shadow as 400.  And what on earth would the point be
in having a world-readable shadow file?!?  The whole point of having a
shadow file is to keep password hashes out of /etc/passwd so that people
can't read it.  It would be nonsensical to then make the shadow file
readable.

--keith



-- 
kkeller at wombat.san-francisco.ca.us