[svlug] Should my /etc/passwd really be mode 644?
newmans at sonic.net
Fri Oct 2 17:36:25 PDT 2015
On 10/02/2015 05:24 PM, Steve Litt wrote:
> Hi all,
> I just noticed on my Void Linux VM and on my Void laptop, /etc/passwd
> is world readable. I set it to mode 600, and the whoami command stopped
> working. Then I looked at my Debian Wheezy box, and both these files
> are also world readable on Wheezy.
> I don't want others knowing the usernames of all accounts on my
> computer. What am I missing here?
The password hashes have been in /etc/shadow for a very long time now. If that is 644 then you have a problem.
More information about the svlug