Simon Josefsson <simon@josefsson.org> writes: >> Simon Josefsson <simon@josefsson.org> writes: >> >> > Package: debian-installer >> > Severity: wishlist >> > >> > On some system that I preseed-install, I don't want any root >> > password set nor do I want a normal user account. I get access to >> > the system via SSH, using a public-key that I populate using a >> > late_command. >> >> If you want a work-around for this in the meantime, have a look at: >> >> http://hands.com/d-i/jessie/start.cfg >> http://hands.com/d-i/jessie/classes/late_script >> >> and search for ERASEME >> >> I preseed the crypted password, which satisfies the scripting, and >> then blank it in the late script if it's still set to the magic >> string. > > Nice trick, thanks for sharing. I still believe it would be useful to > support this behaviour out of the box, it should be what most people > preseeding machines that never will be used through a console wants. This is already supported but probably not documented. Just use the following settings in your preseed file: d-i passwd/make-user boolean false d-i passwd/root-password-crypted password * This sets the entry for root in /etc/shadow to '*' which effectively means the password is disabled. You can still log in with an ssh key though. Gaudenz
Attachment:
signature.asc
Description: PGP signature