> Do > > passwd -F /etc/shadow > > Now the shadow password file is visible in /var/adm/messages. At least on SunOS 4.1.3, where the equivalent command is passwd -F /etc/security/passwd.adjunct this doesn't work. If the file it is trying to read is sort of in /etc/passwd format (colon-separated fields), then you will get a complaint like May 11 09:49:00 ncar passwd[7959]: null uid: "root" for each line of the file, so fortunately it does not actually allow the shadow passwd file to be read on SunOS 4.1.3. However, for other unreadable files, it works just fine so it is still a serious security hole. --Greg