What do "!" and "*" mean in the password section in /etc/shadow?

linux ubuntu-12.04
19,947

Solution 1

man shadow

   If the password field contains some string that is not a valid
   result of crypt(3), for instance ! or *, the user will not be able
   to use a unix password to log in (but the user may log in the
   system by other means).

   This field may be empty, in which case no passwords are required to
   authenticate as the specified login name. However, some
   applications which read the /etc/shadow file may decide not to
   permit any access at all if the password field is empty.

   A password field which starts with a exclamation mark means that
   the password is locked. The remaining characters on the line
   represent the password field before the password was locked.

So * means no password can be used to access the account, and ! means its locked

Solution 2

From the manual page shadow(5):

encrypted password
Refer to crypt(3) for details on how this string is interpreted.

If the password field contains some string that is not a valid result of crypt(3), for instance ! or *, the user will not be able to use a unix password to log in (but the user may log in the system by other means).

This field may be empty, in which case no passwords are required to authenticate as the specified login name. However, some applications which read the /etc/shadow file may decide not to permit any access at all if the password field is empty.

This field may be empty, in which case no passwords are required to authenticate as the specified login name. However, some applications which read the /etc/shadow file may decide not to permit any access at all if the password field is empty.

Also, the program passwd (see passwd(1)) can be locked to create these locked accounts by prefixing the password with !:

-l, --lock
Lock the password of the named account. This option disables a password by changing it to a value which matches no possible encrypted value (it adds a '!' at the beginning of the password).

Share:
19,947
Denis Weerasiri
Author by

Denis Weerasiri

I'm a Computer Science PhD Student at the UNSW. As well a violinist and an enthusiastic blogger. The comments made on this site are my opinion and do not necessarily represent the views of my employer.

Updated on June 28, 2022

Comments

  • Denis Weerasiri
    Denis Weerasiri almost 2 years

    In a /etc/shadow file, it looks like as follows.

    root:!:15764:0:99999:7:::
daemon:*:15749:0:99999:7:::

    What do these characters ("!" and "*") mean in the password section?

  • Константин Ван
    Константин Ван almost 3 years
    Note: both do the same.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

What means the -z value in an if expression on a Linux script?
PTrace: linux/user.h: No such file or directory
Restarting dropbox-daemon if running
Difference between ubuntu desktop and ubuntu desktop usb
What is rotating my haproxy logs?
Automounting SD card when inserted in Ubuntu
Ubuntu not installed-Please Remove installation media and close tray and press enter
How to revert to default google search from google.com/cse?
Permission denied (publickey,gssapi-with-mic) when cloning Git repo
How to get Ubuntu 12.04 to recognize the UDF filesystem?