CompTIA Linux+ (XK0-004) — Question 39

A corporate server security policy states, `Ensure password hashes are not readable by non-administrative users.` The administrator should check the permissions on which of the following files to ensure the server satisfies this policy?

Answer options

• A. /etc/shadow
• B. /etc/passwd
• C. /etc/group
• D. /etc/security/limits.conf

Correct answer: A

Explanation

The correct answer is A, as the /etc/shadow file contains the password hashes for the users and should only be accessible by the root user. The other files, such as /etc/passwd and /etc/group, can be read by all users, and /etc/security/limits.conf does not contain sensitive information related to password hashes.