For increased security I enabled tcb - the alternative to shadow
Since this was implemented I get an rkhunter warning that seems not appropriate:
rkhunter -c -sk:
Checking for passwordless accounts [ Warning ]
[10:34:46] Checking for passwordless accounts [ Warning ]
[10:34:46] Warning: No shadow/password file found.
This is due to the fact that the one /etc/shadow file has been replaced by separate /etc/tcb/<user>/shadow files.
I would like to propose that in some future version rkhunteris enhanced to check -- in case /etc/shadow is absent -- the integrity of the separate shadow files instead.
An example of such a user's shadow file reads:
Thanks v.m. for your time.