How find user with empty password in Linux?

Question

Dennis Williamson · Answer 1 · 2011-02-28T00:18:22.957

This is a shorter and more precise version of AndreKR's answer:

sudo getent shadow | grep '^[^:]*:.\?:' | cut -d: -f1

It has only one call to cut and will find entries of any of the forms below:

foo:!: ...
bar:*: ...
baz:: ...

If you only want truly empty:

sudo getent shadow | grep '^[^:]*::' | cut -d: -f1

If you have GNU grep, you can eliminate cut completely:

sudo getent shadow | grep -Po '^[^:]*(?=:.?:)'

or

sudo getent shadow | grep -Po '^[^:]*(?=::)'

score 9 · Answer 2 · answered Feb 27 '11 at 22:59

9

getent shadow | cut -d: -f1-2 | grep ':$' | cut -d: -f1

answered Feb 27 '11 at 22:59

AndreKR

score 6 · Answer 3 · edited Feb 27 '11 at 23:06

6

Encrypted password is the second field in /etc/shadow.

If second field is empty, then password empty:

awk -F":" '($2 == "") {print $1}' /etc/shadow

! and * is invalid password(user can not login):

awk -F":" '($2 == "!" || $2 == "*") {print $1}' /etc/shadow

edited Feb 27 '11 at 23:06

Mark Henderson

answered Feb 27 '11 at 23:05

ooshro

score 2 · Answer 4 · answered Feb 27 '11 at 23:00

2

Their entry in /etc/shadow/ will have no password-hash in it. You'll need to be logged in as root to be able to see them, though.

answered Feb 27 '11 at 23:00

sysadmin1138

score 0 · Answer 5 · answered Oct 07 '18 at 21:56

0

Has the user "user" an empty password ?

getent shadow | grep 'user:\$' | cut -d':' -f 2 | grep '\w' -c -m 1

return 1 on fail - password is not empty
return 0 on success - a password is set

Hope this is accurate

answered Oct 07 '18 at 21:56

LittleEaster

5 Answers5