NAME
pwconv — install, update or check the /etc/shadow file
SYNOPSIS
/usr/sbin/pwconv
[-t]
[-v]
DESCRIPTION
The
pwconv
command installs or appends
/etc/shadow
with information from
/etc/passwd,
or checks for any discrepancies between the contents
of the two files.
The
pwconv
command without arguments does the following:
- 1.
Creates the file
/etc/shadow
if it does not exist;
otherwise, it removes all entries for usernames
which are not present in
/etc/passwd.
- 2.
Moves all the existing encrypted passwords and aging
information from
/etc/passwd
to
/etc/shadow.
Entries in
/etc/passwd
which have no encrypted password or aging information will
not overwrite information in
/etc/shadow.
- 3.
Writes "x" to all password fields in the
/etc/passwd
file.
The command relies on a special value of "x" in the password
field of
/etc/passwd.
A value different from "x" will prompt
pwconv
to move the password and aging information into
the corresponding fields of
/etc/shadow.
If no aging information exists in
/etc/passwd
for a user, none will be added to
/etc/shadow;
however, the
sp_lstchg
field will always be updated (default is current date).
Options
The following options are recognized:
- -v
Verbose. Performs as
pwconv
but also prints error
information to stdout.
- -t
Test. Performs as
pwconv -v
but makes no changes to
/etc/passwd
and
/etc/shadow.
The
pwconv
command can only be used by the superuser.
Notes
HP recommends running
pwck
before
pwconv.
See
pwck(1M).
A system which has been converted to Trusted Mode has no
/etc/shadow
file.
In this case,
pwconv
can be used with no options to update the secure password
facility to reflect any changes made in the
/etc/passwd
file.
RETURN VALUE
Exit values are:
- 0
Successful completion.
- 1
Conversion error occurred.
FILES
- /etc/passwd
system password file.
- /etc/shadow
shadow password file.
- /tcb/files/auth/*/*
secure password facility.
Printable version
