Linux_FoundationLinux_Foundation
LFCS · Question #489
LFCS Question #489: Real Exam Question with Answer & Explanation
The correct answer is A: The encrypted passwords are still subject to brute force attacks.. The /etc/shadow file is not world-readable because even though passwords are cryptographically hashed, these hashes are still vulnerable to offline brute-force or dictionary attacks if exposed.
Submitted by yuki_2020· Apr 18, 2026User and Group Management
Question
Why is /etc/shadow not world readable if the passwords are stored in an encrypted fashion?
Options
- AThe encrypted passwords are still subject to brute force attacks.
- BThis is just for historical reasons.
- CThere is other information in the file that needs to be kept secret.
- DThe passwords can be decrypted by anyone with root access.
Explanation
The /etc/shadow file is not world-readable because even though passwords are cryptographically hashed, these hashes are still vulnerable to offline brute-force or dictionary attacks if exposed.
Common mistakes.
- B. The restricted permissions on
/etc/shadoware a direct security measure against password cracking, not merely a historical remnant. - C. While
/etc/shadowcontains other sensitive information like password aging details, the primary and most critical reason for its restricted access is the protection of password hashes from cracking attempts. - D. Passwords stored in
/etc/shadoware hashed, not encrypted, meaning they cannot be "decrypted" back to their original plaintext form by anyone, including root. Root can change passwords, but not reverse hashes.
Concept tested. /etc/shadow security principles
Topics
#Password security#File permissions#/etc/shadow#Brute force attacks
Community Discussion
No community discussion yet for this question.