[Pkg-shadow-devel] Bug#501869: passwd(1) stops shadowing if /etc/passwd is edited manually

jidanni at jidanni.org jidanni at jidanni.org
Sat Oct 11 02:31:47 UTC 2008

Package: passwd
Version: 1:4.1.1-5
File: /usr/bin/passwd

Please document on the passwd(1) man page or better yet fix somehow:

If a line in /etc/passwd has been changed by hand and not with
passwd(1) or vipw(1), then from then on any users who change their
passwords using passwd(1) will cause their encrypted password to be
visible in /etc/passwd, until the day the administrator runs pwconv(8).

# ed /etc/passwd #e.g. forgot passwd, rescue from grub "rw init=/bin/sh"
# passwd #then after rebooting and logging in, set a passwd
# grep root /etc/passwd

P.S., also you might want to mention on the pwck(8) man page that it
doesn't check that shadow information might be sitting exposed in
/etc/passwd. Also warn to not run pwck on /etc/group.

Also you might want to add SEE ALSO pwck(8) to passwd(1) and

Also add SEE ALSO gshadow(5) to shadow(5). In fact there are lots more
see also connections that should be made between the members of
$(dlocate -man passwd), e.g., pwck<->grpck... Or perhaps give all on
each page...

More information about the Pkg-shadow-devel mailing list