Bug#811419: debian-installer: Provide option to disable local interaction with the installer if SSH access is enabled
Hi,
On 01/18/2016 11:46 PM, Martin Michlmayr wrote:
> * Rik Theys <Rik.Theys@esat.kuleuven.be> [2016-01-18 20:15]:
>> When a preseed file is used to enable SSH access to the installer, the
>> local user can still interfere with the installation process by using
>> the local console.
>>
>> It would be nice to have an option to disable local interaction with
>> the installer, so only remote access is allowed.
>
> Out of interest, what's the use case for this?
We have Linux workstations in offices of users who don't have root
permission on the (installed) system. When we upgrade the system we
would like to prevent the user from interacting with the installer.
We preseed all installation settings except the root password and
partitioning. We can use the SSH access to the installer to remotely
finish the installation, but the user can also set the password on the
system as the installer also asks the questions locally. We would like
to prevent this.
It would be nice to have like a 'network-console/remote-only' option to
only allow remote interaction with the installer. The local display
could then show a message that the admin is doing the installation
remotely and to not touch the system.
On RHEL/Fedora we can use the vnc option so the installer is only
available over VNC.
I'm aware that this is not perfect and that the end-user can always gain
access to the system as (s)he has physical access, but (s)he would have
to abort the installation which is immediately noticed by the admin
doing the remote install.
Regards,
Rik
--
Rik Theys
System Engineer
KU Leuven - Dept. Elektrotechniek (ESAT)
Kasteelpark Arenberg 10 bus 2440 - B-3001 Leuven-Heverlee
+32(0)16/32.11.07
----------------------------------------------------------------
<<Any errors in spelling, tact or fact are transmission errors>>
Reply to: