How to verify that all password files in Unix systems are encrypted or hashed and that these files cannot be accessed without root or administrator privileges? or Audit all access to password files in the system.
I am sure compliance module can be used to perform this function. Do anyone have any comments on this?
Or know how to set it up.