--- a/example.conf	Sun Aug 16 02:45:42 2009 +0300
+++ b/example.conf	Sun Aug 16 02:51:28 2009 +0300
@@ -20,6 +20,16 @@
 # Full path to iptables binary
 IPTABLES = "/sbin/iptables"
 
+# System passwd file location (default is /etc/passwd), this file
+# is checked to figure out system account names. See also SYSACCT_
+# settings below.
+#PASSWD = "/etc/passwd"
+
+## Set range of system account UIDs here, default is 1-100.
+## Root account is handled by CHK_ROOT_SSH_PWD check.
+#SYSACCT_MIN_UID     = 1
+#SYSACCT_MAX_UID     = 100
+
 
 #############################################################################
 ### Actions, etc. settings
@@ -93,10 +103,6 @@
 ## for system accounts .. which would be stupid anyway.
 CHK_SYSACCT_SSH_PWD = 0
 
-## Set range of system account UIDs here, default is 1-100.
-## Root account is handled by CHK_ROOT_SSH_PWD check.
-#SYSACCT_MIN_UID     = 1
-#SYSACCT_MAX_UID     = 100
 
 
 # (2) Common/known vulnerable CGI/PHP software scans (like phpMyAdmin)