shadow password file
shadow is an ASCII system file with restricted access.
The fields for each user entry are separated by colons.
Each user entry is separated from the next by a newline character.
Unlike the /etc/passwd file, /etc/shadow is
not generally readable.
The shadow file contains the following information
for each user:
The user's login name (ID).
The encrypted password for the user, prefixed
with the string ``LK'' when the account is locked,
the string ``RETIRED'' when the account has been retired,
or no string when the account does not have a password.
The number of days between January 1, 1970, and the date that the
password was last modified.
The minimum number of days required between password changes.
The maximum number of days for which the password is valid.
The encrypted password consists of characters chosen from a 64-character
alphabet ( ., /, 0-9, A-Z, a-z ).
An encrypted password may be up to 112 characters long, the length being
controlled by the length of cleartext password field on the
Accounts selection of the Account manager. Every 8 characters of
cleartext uses 11 characters of
encrypted text. Encrypted passwords are
always prefixed by a 2-character salt. The minimum length of an
encrypted password is 13 characters.
full pathname of passwd
protected password authentication database files
© 2003 Caldera International, Inc. All rights reserved.
SCO OpenServer Release 5.0.7 -- 11 February 2003