If the shadow passwords are not used (normally they are), then some crypted has can be seen from /etc/passwd. If the shadow passwords are on, then file /etc/shadow contains the hashes. So, old passwords cannot be figured out (easily), because the algorithm used is unidirectional, but they can be changed (Easiest way to do it is with passwd command).
|