Here is a newbie question.
>From the Solaris 2.3 manpage on shadow:
password A 13-character encrypted password for the user,
a lock string to indicate that the login is not
accessible, or no string, which shows that there
is no password for the login.
We run the TIS toolkit. We don't run NIS. The FW forwards mail to the inside.
My firewall shadow file has three TYPES of entries as follows:
root:Drf83xjd83jd83.3:9999:::::: <----- NOT my real root passwd! But waste
your time if you want.
daemon:NP:6445:::::: <--- Is this the Lock string? or does NP=No passwd?
listen:*LK*::::::: <--- Is this the Lock string? *LK*=LOCK?
Is it safer to just delete unnecessary accounts such as uucp, lp, listen,
If so which ones do we delete?
Are we paranoid?