I said it doesn't need its setuid bit set; there are still
valid reasons why you would want it, if only to force users
to make up passwords that meet certain criteria. That's why the
/etc/passwd conversion script included in the distribution makes PASSWD files mode 0400
and owned by root, not the user.
back