shadow password file

1. The original password is encrypted (or encoded) by using a randomly-generated value or encryption key between 1 and 4096 and a one-way hashing function to arrive at the encoded password that is actually stored. Note that the stored result is not something that you can enter as a password itself.
2. The key (referred to as the salt) is stored with the encoded password. Note the key itself can't be used to decode the encrypted/encoded password because the encoding is one-way. You can't decode the result back into the original password by using the key.
3. When someone enters a password, their password is then rehashed with the salt value and compared with the encoded password value. If they match, the user is given access to the system.

Read more about shadow password file: - Why shadow your passwd file? provides more information and tells where to download the Shadow Suite.

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

BROWSE BY TAG Enterprise Identity and Access Management,   Password Management and Policy,   Identity Management Technology and Strategy,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT How to prevent brute force webmail attacks Expert Sherri Davidoff explains why brute-force attacks on webmail accounts are such a popular hacking technique. Best practices for a privileged access policy to secure user accounts Enterprises need to secure accounts belonging to actual users by reviewing and monitoring their privileged access. Mature SIMs do more than log aggregation and correlation They've come a long way from the early days of log aggregation and correlation; enterprises now glean value from SIMs for compliance, visualization...

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary graphical password  (SearchSecurity.com) identity chaos  (SearchSecurity.com)