Why is /etc/shadow not world readable if the passwords are stored in an encrypted fashion?

Why is /etc/shadow not world readable if the passwords are stored in an encrypted fashion?
A . The encrypted passwords are still subject to brute force attacks.
B . This is just for historical reasons.
C . There is other information in the file that needs to be kept secret.
D . The passwords can be decrypted by anyone with root access.

View Answer

Answer: A

Explanation:

The /etc/shadow file is not world readable because the encrypted passwords stored in it are still vulnerable to offline brute force attacks. A brute force attack is a method of trying every possible password until finding the correct one. With modern hardware and software, millions of passwords can be tried per second. If the /etc/shadow file was world readable, anyone who logged in to the system, even as a guest, could copy the file and attempt to crack the passwords without leaving any trace. By making the file readable only by the root user, the system prevents unauthorized access to the password hashes and reduces the risk of password compromise. The other options are incorrect because they do not explain the reason for the file permissions. Option B is false, as the /etc/shadow file was created to address the security issues of the /etc/passwd file, which used to store the passwords in a world readable file. Option C is partially true, as the /etc/shadow file does contain other information related to password expiration and account locking, but this is not the main reason for making the file not world readable. Option D is irrelevant, as the passwords cannot be decrypted by anyone, even with root access, as the encryption is one-way and irreversible.

Reference:

https://www.computernetworkingnotes.com/linux-tutorials/etc-shadow-file-in-linux-explained-with-examples.html

https://kerneltalks.com/user-management/understanding-etc-shadow-file/