Password in /etc/passwd (UNIX)

Module: Account Integrity

This check reports users with passwords that are contained in the /etc/passwd file when the system is using, or has access to, shadow files or enhanced security files. Use the name list to exclude users from this check (the Users to check option does not apply).

The following table lists the error message for the check.

Table: Error message for Password in /etc/passwd

Message String ID and Category	Platform and Message Numeric ID	Message Title and Description	Additional Information
String ID: STKU_PASSEXISTED Category: ESM Administrative Information	UNIX (5167)	Title: Password in /etc/passwd Description:Encrypted passwords for the listed accounts exist in the /etc/passwd file even though enhanced security is enabled. You should modify the password entries for these accounts in the /etc/password file, using the proper format for your operating system, to ensure that password data is not stored in the /etc/password file.	Severity: red-4 Correctable: false Snapshot Updatable: false Template Updatable: false Information Field Format: [%s]

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: STKU_PASSEXISTED

Category: ESM Administrative Information

UNIX (5167)

Title: Password in /etc/passwd

Description:Encrypted passwords for the listed accounts exist in the /etc/passwd file even though enhanced security is enabled. You should modify the password entries for these accounts in the /etc/password file, using the proper format for your operating system, to ensure that password data is not stored in the /etc/password file.

Severity: red-4

Correctable: false

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]