Re: live-config scripts 0030-user-setup and 0030-live-debconfig_passwd
On 10/27/2021 11:41 AM, paul@gilbertson.biz wrote:
As a way of changing the default user password, there was a way of
placing an encrypted password string in the /etc/shadow account for
debian live systems by using the "0030-user-setup" script. Here is
part of the script:
# Default password is: live
# passwords can be generated with 'echo "live" | mkpasswd -s',
# a blank password is 'U6aMy0wojraho'.
_PASSWORD="8Ab05sVQ4LLps"
Since Bullseye, all hashing is supposedly done with yescrypt as the
default. However, the only the following weak hashing algorithm of
"descrypt" seems to work for changing the user login password. When I
use "mkpasswd -s -m descrypt" everything works flawlessly and I can
login with the new password. Is there a way of using the "mkpasswd -s
-m yescript" with this 0030-user-setup script so I can login with the
normal user with a custom password and have a more secure hash?
As for this, I sent a MR a month ago:
https://salsa.debian.org/live-team/live-config/-/merge_requests/10
Still waiting for approval.
Steven
--
Steven Shiau <steven _at_ stevenshiau org>
Public Key Server PGP Key ID: 4096R/163E3FB0
Fingerprint: EB1D D5BF 6F88 820B BCF5 356C 8E94 C9CD 163E 3FB0
Reply to: