-
Bug
-
Resolution: Not a Bug
-
Normal
-
None
-
rhel-8.9.0, rhel-9.3.0
-
None
-
None
-
Low
-
rhel-sst-idm-sssd
-
ssg_idm
-
0
-
False
-
-
None
-
Red Hat Enterprise Linux
-
None
-
None
-
None
-
-
All
-
None
What were you trying to do that didn't work?
After executing pwconv/grpconv, permission mode in /etc/shadow changes from 0000 to 0400.
Unshadow with pwunconv/grpunconv, and recreate with pwconv/grpconv:
- pwunconv
- pwconv
- grpunconv
- grpconv
Check it's permissions
- ls -l /etc/shadow
r-------. 1 root root 1734 4月 24 10:44 /etc/shadow
r-------. 1 root root 829 4月 24 10:52 /etc/gshadow
This is different from the default by the setup package.
https://access.redhat.com/solutions/2048573
- rpm -V setup
.M....... c /etc/gshadow
.M....... c /etc/shadow
Please provide the package NVR for which bug is seen:
- shadow-utils-4.6-19.el8.x86_64 (RHEL8)
- shadow-utils-4.9-8.el9.x86_64 (RHEL9)
How reproducible:
Always
Steps to reproduce
Check /etc/shadow permissions:
- ls -l /etc/shadow
Unshadow with pwunconv, recreate with pwconv:
- pwunconv
- pwconv
Check it's permissions again:
- ls -l /etc/shadow /etc/gshadow
Expected results
Keep default 0000 after recreation.
- ls -l /etc/shadow /etc/gshadow
----------. 1 root root 1505 10月 12 2023 /etc/shadow
Actual results
- ls -l /etc/shadow
r-------. 1 root root 829 4月 24 10:52 /etc/gshadow
r-------. 1 root root 1734 4月 24 10:55 /etc/shadow
