Comment # 7 on bug 1085062 from Franck Bui

(In reply to Michael Matz from comment #5)
> 
> No, that's not a bug, but how the nss_compat mode for /etc/passwd (and
> /etc/group) traditionally works.  The NIS-catchall entry switches from
> files to NIS lookup and never goes back, so it must be the last
> entry in /etc/passwd (the other +/-{user,@netgroup} entries don't have to
> be).
>

Michael, is there any point to enforce this in shadow password file as well ?

Thanks.