/etc/passwd is readable by non-root users
Created by: deepaksirone
-
I agree that I have searched opened and closed issues to prevent duplicates.
Description
The /etc/passwd
file containing the hashed root password is readable by non root users.
Steps to reproduce
- Login to the
user
account - cat
/etc/passwd
Behavior
- Expected behavior: The permissions should be changed for the passwd file or a shadow file should hold the password hash.