[SOLVED] Why root now has a password set in /etc/shadow in slackware64-current/isolinux/initrd.img?

Didier Spaier · 02-23-2016, 04:23 PM

This is new from today's update. Just curious...

volkerdi · 02-23-2016, 07:08 PM

It's an empty password since otherwise dropbear won't accept a login. For most users, this makes no difference as /bin/login isn't used (and doesn't even exist) on the installer. Any "password" works.

Ztcoracat · 02-23-2016, 07:33 PM

Quote:

Originally Posted by volkerdi

It's an empty password since otherwise dropbear won't accept a login. For most users, this makes no difference as /bin/login isn't used (and doesn't even exist) on the installer. Any "password" works.

Thanks:-

Didier Spaier · 02-23-2016, 11:03 PM

Thanks, I wouldn't have guessed.

atelszewski · 02-24-2016, 09:36 AM

Hi,

Wouldn't upgrading the dropbear to at least 2013.56 solve the problem altogether?

Excerpt from changelog (emphasis mine).

Code:

2013.56 - Thursday 21 March 2013

- Allow specifying cipher (-c) and MAC (-m) lists for dbclient

- Allow using 'none' cipher or MAC (off by default, use options.h). Encryption
  is used during authentication then disabled, similar to OpenSSH HPN mode

- Allow a user in immediately if the account has a blank password and blank
  passwords are enabled

Don't know if it would work for root user, though.

--
Best regards,
Andrzej Telszewski