GSHADOW(5) | 文件格式和转化 | GSHADOW(5) |
gshadow - 影子化了的组文件
/etc/gshadow 包含影子化了的组账户信息。
如果没有维护好密码安全,此文件绝对不能让普通用户可读。
此文件的每行包含逗号分隔的如下字段:
组名
加密了的密码
If the password field contains some string that is not a valid result of crypt(3), for instance ! or *, users will not be able to use a unix password to access the group (but group members do not need the password).
The password is used when a user who is not a member of the group wants to gain the permissions of this group (see newgrp(1)).
此字段可以为空,此时,只有组成员可以获取组权限。
A password field which starts with an exclamation mark means that the password is locked. The remaining characters on the line represent the password field before the password was locked.
此密码取代 /etc/group 中指定的任何密码。
管理员
管理员可以更改组密码和成员。
管理员也有成员一样的权限(请看下边)。
成员
成员可以免密码访问组。
You should use the same list of users as in /etc/group.
/etc/group
/etc/gshadow
2018-07-27 | shadow-utils 4.5 |