lfd /bin/passwd: FAILED

epanagio

Well-Known Member
May 26, 2012
50
1
58
cPanel Access Level
Website Owner
I received an email where it tells me that the /bin/passwd failed the md5sum comparison test.

This is alarming because I did not make any changes to cause this message.

Could this be generated because of a cpanel/WHM update?
 
Oct 10, 2015
15
1
3
Alabama, United States
cPanel Access Level
Root Administrator
Could this be generated because of a cpanel/WHM update?
It in fact may be. Check the location of /bin/passwd, it should be a symlink to a cPanel file:
Code:
lrwxrwxrwx 1 root root 38 Oct 14 08:13 passwd -> /usr/local/cpanel/bin/jail_safe_passwd*
In this case, the jail_safe_passwd bin file was updated for me on 10-22-2015:
Code:
update.1445491741.log:[2015-10-22 01:31:52 -0400]   Retrieving and staging /cpanelsync/11.52.0.18/binaries/linux-c7-x86_64/bin/jail_safe_passwd.xz
update.1445491741.log:[2015-10-22 01:31:52 -0400]   Set permissions on /usr/local/cpanel/bin/jail_safe_passwd-cpanelsync to 0755
I highly recommend that you review your update logs to ensure it's the same for you and not take "my word" for it, that it's safe. Also, the md5sum that I'm showing for my jail_safe_passwd file is:
Code:
# md5sum /usr/local/cpanel/bin/jail_safe_passwd
af790d8a13befd4eceabbc604fd62e20  /usr/local/cpanel/bin/jail_safe_passwd
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,884
2,250
463
Hello :)

Yes, the previous post is accurate. You can post the md5sum for the file on your system if you are concerned it's not legitimate.

Thank you.
 
  • Like
Reactions: David P. Levey Jr.

s37n

Active Member
May 22, 2011
36
0
56
I received this message recently as well. Can someone please verify the MD5 for my 56.0 (Build 46) installation?

d41d8cd98f00b204e9800998ecf8427e /usr/local/cpanel/bin/jail_safe_passwd
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,884
2,250
463
I received this message recently as well. Can someone please verify the MD5 for my 56.0 (Build 46) installation?

d41d8cd98f00b204e9800998ecf8427e /usr/local/cpanel/bin/jail_safe_passwd
Hello @s37n,

Could you let u know your OS version and architecture? You can determine this with the following commands:

Code:
cat /etc/redhat-release
arch
Keep in mind that functionality is included to ensure files downloaded from cPanel update servers are authentic. You can read more about how this works on the following document:

Download Security - cPanel Knowledge Base - cPanel Documentation

Thank you.