yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1635794] Re: lock_passwd should not be true by default

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Dan Watkins <daniel.watkins@xxxxxxxxxxxxx>
Date: Tue, 19 Feb 2019 17:11:08 -0000
Reply-to: Bug 1635794 <1635794@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Hi Albert,

Thanks for filing this bug!  Having root's password locked is a sensible
default from a security POV, so we're unlikely to change this.  If you
have a compelling reason that we should change this, please do reopen
this bug.


Thanks!

** Changed in: cloud-init
       Status: New => Invalid

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to cloud-init.
https://bugs.launchpad.net/bugs/1635794

Title:
  lock_passwd should not be true by default

Status in cloud-init:
  Invalid

Bug description:
  I used the users module to add an authorized key to the root user:
  users:
    - name: root
      ssh-authorized_keys:
        - {{ authorized_key }}

  I was surprised to find that root's password was locked after this
  operation - the lock_passwd key has a default of true.  Is there a
  reason why the locked status can't be left just the way it was,
  instead of locking it by default?

To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-init/+bug/1635794/+subscriptions

References

[Bug 1635794] [NEW] lock_passwd should not be true by default
From: Albert de Jongh, 2016-10-22