Hi Chris,
Chris Cappuccio wrote on Thu, May 03, 2012 at 09:31:55PM -0700:
> Mike Erdely [m...@erdelynet.com] wrote:
>> FYI: For a test, I added "foo" with useradd(8) and "bar" with adduser(8):
>> # grep -E "(foo|bar)" /etc/master.passwd
>> foo:*************:1002:1002::0:0::/home/foo:/bin/ksh
>> bar:*:1003:1003::0:0:bar:/home/bar:/bin/ksh
>>
>> Looks like useradd does the right thing and adduser does not.
> When did thirteen asterisks start to mean anything different
> than the single traditional asterisk?
On March 31, 1992, when Keith Bostic first implemented
counting the characters in the password hash field in
in etc/security SCCS diff 5.14.
Here is Keith's original implementation:
echo "Checking for turned-off accounts with valid shells:"
awk -F: "length(\$2) != 13 && \$10 ~ /.*sh$/ \
{ print \"user \" \$1 \" account turned off with valid shell.\" }" \
/etc/master.passwd
Yours,
Ingo
