Password in /etc/passwd (UNIX)

Module: Account Integrity

This check reports users with passwords that are contained in the /etc/passwd file when the system is using, or has access to, shadow files or enhanced security files. Use the name list to exclude users from this check (the Users to check option does not apply).

The following table lists the error message for the check.

Table: Error message for Password in /etc/passwd

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information


Category: ESM Administrative Information

UNIX (5167)

Title: Password in /etc/passwd

Description:Encrypted passwords for the listed accounts exist in the /etc/passwd file even though enhanced security is enabled. You should modify the password entries for these accounts in the /etc/password file, using the proper format for your operating system, to ensure that password data is not stored in the /etc/password file.

Severity: red-4

Correctable: false

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]