Which Unix password files commonly store password hashes that authentication relies on?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Which Unix password files commonly store password hashes that authentication relies on?

Explanation:
Password verification on Unix systems relies on the stored password hash. In modern setups, the real hash and related aging data live in /etc/shadow, which is protected so only privileged processes can read it. The corresponding user account information—such as username, UID, shell, home directory—lives in /etc/passwd. On systems using shadow passwords, the password field in /etc/passwd contains a placeholder (often an x) rather than the actual hash, signaling that the hash is kept in /etc/shadow. Some older or non-shadow configurations may still store the hash in /etc/passwd. Since authentication checks the stored hash, both files are part of the password database, while /etc/hosts is unrelated to authentication.

Password verification on Unix systems relies on the stored password hash. In modern setups, the real hash and related aging data live in /etc/shadow, which is protected so only privileged processes can read it. The corresponding user account information—such as username, UID, shell, home directory—lives in /etc/passwd. On systems using shadow passwords, the password field in /etc/passwd contains a placeholder (often an x) rather than the actual hash, signaling that the hash is kept in /etc/shadow. Some older or non-shadow configurations may still store the hash in /etc/passwd. Since authentication checks the stored hash, both files are part of the password database, while /etc/hosts is unrelated to authentication.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy