shadow — shadow password file
file is created from the
file by the
It is readable only by a privileged user.
It can be modified by the
Programs may use the interfaces described in the
manpage to access this information.
These functions return a pointer to an
structure, which is defined in the
file is an ASCII file consisting of any number of user entries
separated by newlines.
Each user entry line consists of the following fields
separated by colons:
- login name
must match a login name in
puts the user entries in
in the same order as the
- encrypted password
field of each
entry contains an `x', and the actual encrypted passwords reside in
field consists of 13 characters chosen from a
64-character set of "digits".
The characters used to represent "digits" are
for 2 through 11,
for 12 through 37, and
for 38 through 63.
If this field is null,
then there is no password and no password is demanded on login.
Login can be prevented by entering a character that is not a
part of the set of digits (such as *).
- last change
The number of days since January 1, 1970 that
the password was last modified.
- min days
The minimum period in days that must expire before the password
can be changed.
- max days
The maximum number of days for which a password is valid.
A user who attempts to login after his password has expired
is forced to supply a new one.
are both zero, the user is forced to change his password the
next time he logs in.
is greater than
then the password cannot be changed.
These restrictions do not apply to the superuser.
- warn days
The number of days the user is warned before his password expires.
The maximum number of days of inactivity allowed.
This field is set with the
option of either the
If this value is greater than zero, then the account
is locked if there have been no logins to the account
for at least the specified number of days.
If this value is less than or equal to zero,
the value is determined by the
See the description of
The absolute number of days since Jan 1, 1970 after which the
account is no longer valid.
A value of zero in this field indicates that the account
field is always zero and is reserved for future use.
file is not applicable to a system which has been converted to
a trusted system.
HP-UX 11i Version 3 is the last release to support
trusted systems functionality.
system password file
shadow password file