Views:
1,450
Votes: 2
Tags:
22.04
password
security
Link:
🔍 See Original Answer on Ask Ubuntu ⧉ 🔗
URL:
https://askubuntu.com/q/1491776
Title:
Are login passwords saved on the machine or only a hash version of the password?
ID:
/2023/11/07/Are-login-passwords-saved-on-the-machine-or-only-a-hash-version-of-the-password_
Created:
November 7, 2023
Upload:
September 15, 2024
Layout: post
TOC:
false
Navigation: false
Copy to clipboard: false
In addition to hashed / salted passwords, some are stored in plain text where no one else can read them.
For example ~/.netrc
:
.netrc
file should be located in your home directory and the permissions on the file must be set so that you are the only user who can read it, i.e. it is unreadable to everyone else. It should be set to at least Read (400
), or Read/Write (600
).
For small developers who wish to avoid the complexities of managing passwords with hashing algorithms, the ~/.netrc
methodology can be considered. The methodology is used in SSH to automatically log into remote servers.