Re: Bug#977358: release-notes: document how to make the rescue mode usable if no root password is set (buster)

To: debian-user@lists.debian.org
Subject: Re: Bug#977358: release-notes: document how to make the rescue mode usable if no root password is set (buster)
From: Andrei POPESCU <andreimpopescu@gmail.com>
Date: Sun, 21 Mar 2021 09:40:21 +0200
Message-id: <[🔎] 20210321074021.y32pgzbrzluu4ssq@acr13.nuvreauspam>
In-reply-to: <20201214111259.qrtyus5qqchs42w7@acr13.nuvreauspam>
References: <20201207151148.GW915@eeg.ccf.org> <20201214111259.qrtyus5qqchs42w7@acr13.nuvreauspam>

[Bcc: debian-boot]

Dear Debian-User subscribers,

The Release Notes editor is asking whether this is still an issue for 
bullseye (i.e. if the patch to Debian Installer mentioned below was 
applied in the meantime).

It will be a while until I get to check that. If someone can confirm 
either way please write to #977358.

Full quote below for context.

Thanks,
Andrei

On Lu, 14 dec 20, 13:12:59, Andrei POPESCU wrote:
> Package: release-notes
> X-Debbugs-CC: debian-user@lists.debian.org
> 
> Dear Release Notes Maintainers,
> 
> Some text based on below would make sense for the Release Notes for 
> buster. If agreed I'll try to come up with a wording.
> 
> On Lu, 07 dec 20, 10:11:48, Greg Wooledge wrote:
> > On Sat, Dec 05, 2020 at 12:41:57PM +0200, Andrei POPESCU wrote:
> > > On Vi, 04 dec 20, 08:09:44, Greg Wooledge wrote:
> > > > I am also going to guess that Deepin, like Ubuntu, defaults to giving
> > > > you a user account with sudo access, and no root password.  You can
> > > > achieve that in Debian as well, by doing something special during the
> > > > installation.  In all cases, it's a stupid idea and you shouldn't do it.
> > > 
> > > This is a pretty strong (and harsh!) statement. Care to expand on the 
> > > reasons?
> > 
> > It prevents access to single-user mode.  The fact that Debian (and
> > these others?) still puts a single-user mode entry into the GRUB menu,
> > knowing that it won't work, is just adding insult to injury.
> 
> A web search found #802211[1].
> 
> Short version:
> 
> For systemd >= 240 (buster[2]) run as root
> 
>     systemctl edit rescue.service
>     
> and add:
> 
>     [Service]
>     Environment=SYSTEMD_SULOGIN_FORCE=1
> 
> (see /usr/share/doc/systemd/ENVIRONMENT.md.gz)
> 
> 
> The 'rescue.service' is started by systemd in case it detects 'single' 
> on the kernel command line (see systemd(1)).
> 
> You might want to do the same for 'emergency.service' as well (or 
> instead), since this service is started *automatically* in case of 
> certain errors (see systemd.special(7)) or if you add 'emergency' to the 
> kernel command line (e.g. if you can't fix your system via the 'rescue' 
> service).
> 
> 
> An untested patch to the Debian Installer exists to add both snippets if 
> the user chooses to leave the root password blank.
> 
> 
> [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=802211
> [2] see the bug for another snippet that should work for squeeze or 
> earlier.
> 
> Kind regards,
> Andrei
> -- 
> http://wiki.debian.org/FAQsFromDebianUser

Attachment: signature.asc
Description: PGP signature

Reply to:

Follow-Ups:
- Re: Bug#977358: release-notes: document how to make the rescue mode usable if no root password is set (buster)
  - From: "Alexander V. Makartsev" <avbetev@gmail.com>

Prev by Date: Re: [OT] Re: Social-media antipathy (was Re: How i can optimize my operating system?)
Next by Date: Re: [OT] Re: Social-media antipathy (was Re: How i can optimize my operating system?)
Previous by thread: Re: [OT] Re: Social-media antipathy (was Re: How i can optimize my operating system?)
Next by thread: Re: Bug#977358: release-notes: document how to make the rescue mode usable if no root password is set (buster)
Index(es):
- Date
- Thread