Hi,

Can somebody tell me in which file in Ubuntu , the login passwords of all users is stored.

Thanks,

Vivek

Why?

In an ubuntu installation login password values are not stored in any file.

In an ubuntu installation login password values are not stored in any file.

Yes they are. How does it authenticate you then?

Yes they are. How does it authenticate you then?

Carefully reread my post.

Carefully reread my post.

Oh, you mean the plain text value?

Oh, you mean the plain text value?

Which is what the OP asked for.

Well, if you plan on trying to find out someone else's password, you are out of luck, because all the passwords are encrypted.

The encrypted passwords are stored in /etc/shadow, but you should never have to mess with it.

What exactly are you doing that you need the passwords? There are several tools built into Ubuntu for manipulating the password and shadow files.

Which is what the OP asked for.

Yes, now I understand.

traditionally they are stored in /etc/passwd, but that file has not contained passwords for a very long time. more recently the passwords were stored in a file called /etc/shadow that was encrypted for security. there is no good way to find a users password in cleartext on a modern system.

Yes they are. How does it authenticate you then?
hash comparison. passwords are required to use non-reversible hashing, so that they cannot be broken (deciphered in plaintext).

so on password create, hash the passwd by a given mechanism, and store the hash.
when you put in your password, it is hashed against the same mechanism, and if it matches, you are ready to go, and the system does not need to know your actual password.

the only problem with this system is that you have to ensure that the incoming vector actually hashed the password, rather than just supplying an already compromised hash (pass-the-hash attacks).

hash comparison. passwords are required to use non-reversible hashing, so that they cannot be broken (deciphered in plaintext).

so on password create, hash the passwd by a given mechanism, and store the hash.
when you put in your password, it is hashed against the same mechanism, and if it matches, you are ready to go, and the system does not need to know your actual password.

the only problem with this system is that you have to ensure that the incoming vector actually hashed the password, rather than just supplying an already compromised hash (pass-the-hash attacks).

All this talk about hash can't be good.:P Isn't technology grand?

All this talk about hash can't be good.:P Isn't technology grand?

I don't do it often but when I do do it I love smoking hashes - the windows LM variety particularly.

lolz

Hi,

Can anybody tell me, how to decrypt the password available in /etc/shadow file?

Thanks,

Vivek

Hi,

Can anybody tell me how to decrypt the password of users available in /etc/shadow file in Ubuntu?

Thanks,

Vivek

It was already said above: It's not possible.

Hi,

Can anybody tell me how to decrypt the password of users available in /etc/shadow file in Ubuntu?

Thanks,

Vivek

It is possible, however, decrypting another person's password is not supported in these forums.