On November 3, 2014 1:41:24 AM CET, Nex6|Bill <n6gh...@yahoo.com> wrote:
>so, for OpenBSD you would have to get the /etc/passwd for an offline >attack on >the password hashes >and for that they would need a user account to logon to the system. Or >to have >compromised the system in such a >way as they could copy /etc/passwd. /etc/passwd does not contain password hashes. /etc/master.passwd does, but with vastly different permission bits. /Alexander