-
-
Notifications
You must be signed in to change notification settings - Fork 106
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Allow passwordless login for user "user" (when using 'sudo xl console'). #168
Conversation
Codecov Report
@@ Coverage Diff @@
## master #168 +/- ##
=======================================
Coverage 65.48% 65.48%
=======================================
Files 2 2
Lines 394 394
=======================================
Hits 258 258
Misses 136 136 Continue to review full report at Codecov.
|
@@ -51,6 +51,10 @@ if [ "$1" = "install" ] ; then | |||
} | |||
usermod -L -a --groups qubes user | |||
|
|||
## Allow passwordless login for user "user" (when using 'sudo xl console'). | |||
## https://github.com/QubesOS/qubes-issues/issues/1130 | |||
usermod --password '' user |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is already done in upgrade case below. Maybe it should be unified, like that call below moved outside of if
?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, better. For simplicity and less bugs (at cost of some more needless output) I think it is always good to avoid using install and upgrade cases.
Hmm, when I think about it more, it may not be such a good idea to do it this way. It will enable passwordless login to Maybe better do it by configuring PAM to specifically allow passwordless user login on |
Oh, I see you raised exactly the same concern in QubesOS/qubes-issues#2695 (comment) |
Answered here: QubesOS/qubes-issues#2695 (comment) |
|
This change is just doing what we are currently doing anyhow. But I can see how my approach can be confusing to break it more visibly before starting to fix it. |
Depending on how the exact result should look like, it might be easier to just run |
Autologin idea sounds much better and safer. |
This is handled in #228 |
QubesOS/qubes-issues#1130
Running
sudo usermod --password '' user
in debian-10 TemplateVM allowed me to login as user "user" usingsudo xl console
. While untested, I am pretty sure this would work in the next template build too.