Re: When shadow passwords are disabled it is not possible to login as root after install

To: debian-boot@lists.debian.org
Subject: Re: When shadow passwords are disabled it is not possible to login as root after install
From: "Henrique de Moraes Holschuh" <hmh@hmh.eng.br>
Date: Sun, 21 Apr 2019 14:24:12 -0400
Message-id: <[🔎] a20786f1-1672-48ab-95b4-5d029a4c50cf@www.fastmail.com>
In-reply-to: <[🔎] 20190421155338.GY25446@tack.einval.com>
References: <[🔎] 20190420222417.7E1D.CF10FB4F@gmail.com> <[🔎] 20190420204656.b4fn7zmsfx7ofdin@mraw.org> <[🔎] 20190421131800.7E3D.CF10FB4F@gmail.com> <[🔎] d4064a83c8ebff637133ab750d494b55f7c8136a.camel@decadent.org.uk> <[🔎] 20190421155338.GY25446@tack.einval.com>

On Sun, Apr 21, 2019, at 12:54, Steve McIntyre wrote: 
> To be honest, I can't think of a reason why we even offer a non-shadow
> system. Anyone?

Well, IMHO that option is still there to ensure we will have a zero-tested path (because almost no one uses it), that goes against every modern best practice involving passwords (not so much if you are doing something special that does away with pam_unix, but that's out of scope for the installer anyway).

I.e. IMHO we should consider fixing this for good by removing the possibility of a shadow-less install on the first place.

It might have been useful 15 years ago. Maybe. Nowadays, to have it on the installer is just a pitfall as far as I am concerned :(

-- 
  Henrique Holschuh

Reply to:

References:
- When shadow passwords are disabled it is not possible to login as root after install
  - From: Lukasz Golonka <wulfryk1@gmail.com>
- Re: When shadow passwords are disabled it is not possible to login as root after install
  - From: Cyril Brulebois <kibi@debian.org>
- Re: When shadow passwords are disabled it is not possible to login as root after install
  - From: Lukasz Golonka <wulfryk1@gmail.com>
- Re: When shadow passwords are disabled it is not possible to login as root after install
  - From: Ben Hutchings <ben@decadent.org.uk>
- Re: When shadow passwords are disabled it is not possible to login as root after install
  - From: Steve McIntyre <steve@einval.com>

Prev by Date: Re: Bug#925971: release-notes: should mention secure boot in d-i
Next by Date: Processing of partman-auto-lvm_76_source.changes
Previous by thread: Re: When shadow passwords are disabled it is not possible to login as root after install
Next by thread: Heads-up: new lintian error: no-human-maintainers
Index(es):
- Date
- Thread