How do shadow passwords improve the password security in comparison to standard no-shadow password?
How do shadow passwords improve the password security in comparison to standard no-shadow password?
Shadow passwords improve security by ensuring that regular users do not have access to the password hashes. These hashes are stored in a separate file that is not readable by normal users, thus adding an additional layer of protection against unauthorized access and potential password cracking attempts. This practice helps mitigate the risks associated with storing password hashes in files accessible to any user on the system.
Sure, I can agree with A. From the man 5 shadow: "This file must not be readable by regular users if password security is to be maintained."