cp /etc/passwd
For backwards compatibility, if a password hash is present in the second column of a /etc/passwd user record, it is considered valid for authentication and it takes precedence over the respective entry in /etc/shadow if available.
check the permission of the /etc/passwd
https://medium.com/go-cyber/linux-privilege-escalation-with-suid-files-6119d73bc620
Last updated