Github messages for voidlinux
 help / color / mirror / Atom feed
* [PR PATCH] dropbear: disable password logins for root.
@ 2021-03-19 18:51 mobinmob
  2021-03-21  4:28 ` ericonr
                   ` (19 more replies)
  0 siblings, 20 replies; 21+ messages in thread
From: mobinmob @ 2021-03-19 18:51 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 1752 bytes --]

There is a new pull request by mobinmob against master on the void-packages repository

https://github.com/mobinmob/void-packages dropbear
https://github.com/void-linux/void-packages/pull/29599

dropbear: disable password logins for root.
<!-- Mark items with [x] where applicable -->

#### General
- [ ] This is a new package and it conforms to the [quality requirements](https://github.com/void-linux/void-packages/blob/master/Manual.md#quality-requirements)

#### Have the results of the proposed changes been tested?
- [ ] I use the packages affected by the proposed changes on a regular basis and confirm this PR works for me
- [X] I generally don't use the affected packages but briefly tested this PR

This PR disables password logins for root by using the -g switch in the runit service. The changes follows the default policy for openssh.


<!--
If GitHub CI cannot be used to validate the build result (for example, if the
build is likely to take several hours), make sure to
[skip CI](https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration).
When skipping CI, uncomment and fill out the following section.
Note: for builds that are likely to complete in less than 2 hours, it is not
acceptable to skip CI.
-->
<!-- 
#### Does it build and run successfully? 
(Please choose at least one native build and, if supported, at least one cross build. More are better.)
- [ ] I built this PR locally for my native architecture, (ARCH-LIBC)
- [ ] I built this PR locally for these architectures (if supported. mark crossbuilds):
  - [ ] aarch64-musl
  - [ ] armv7l
  - [ ] armv6l-musl
-->


A patch file from https://github.com/void-linux/void-packages/pull/29599.patch is attached

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2: github-pr-dropbear-29599.patch --]
[-- Type: text/x-diff, Size: 1101 bytes --]

From 0b1132759de18ea967edbf5e7cc0daaa1b79b2fe Mon Sep 17 00:00:00 2001
From: mobinmob <mobinmob@disroot.org>
Date: Fri, 19 Mar 2021 20:49:29 +0200
Subject: [PATCH] dropbear: disable password logins for root.

---
 srcpkgs/dropbear/files/dropbear/run | 2 +-
 srcpkgs/dropbear/template           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/srcpkgs/dropbear/files/dropbear/run b/srcpkgs/dropbear/files/dropbear/run
index 50c442b8cc98..c3cbe115322d 100755
--- a/srcpkgs/dropbear/files/dropbear/run
+++ b/srcpkgs/dropbear/files/dropbear/run
@@ -1,3 +1,3 @@
 #!/bin/sh
 [ -r conf ] && . ./conf
-exec dropbear ${OPTS:=-F -R}
+exec dropbear ${OPTS:=-F -R -g}
diff --git a/srcpkgs/dropbear/template b/srcpkgs/dropbear/template
index 69981dcfe9e5..75bb08d86e99 100644
--- a/srcpkgs/dropbear/template
+++ b/srcpkgs/dropbear/template
@@ -1,7 +1,7 @@
 # Template file for 'dropbear'
 pkgname=dropbear
 version=2020.81
-revision=1
+revision=2
 build_style=gnu-configure
 configure_args="--enable-zlib --disable-bundled-libtom"
 makedepends="zlib-devel libtommath-devel libtomcrypt-devel"

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
@ 2021-03-21  4:28 ` ericonr
  2021-03-21  4:37 ` ahesford
                   ` (18 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: ericonr @ 2021-03-21  4:28 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 327 bytes --]

New comment by ericonr on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803510435

Comment:
I think this warrants an INSTALL.msg, at least. I'm not sure about policy (following openssh default vs changing a configuration like that), however. @void-linux/pkg-committers thoughts?

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
  2021-03-21  4:28 ` ericonr
@ 2021-03-21  4:37 ` ahesford
  2021-03-21  7:51 ` Vaelatern
                   ` (17 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: ahesford @ 2021-03-21  4:37 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 624 bytes --]

New comment by ahesford on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803511042

Comment:
I'm inclined to keep the service as is. The `-F` is required for proper operation as a runit service. I assume `-R` is a no-op if keys are already present, making that flag a harmless way to make things "just work" in a fresh installation. Any other flags cause behavior to deviate from defaults and can already be overridden in `$OPTS`.

(If any change were to be made, I'd move `-F` out of `$OPTS` and force its presence to simplify the process of adding non-default flags.)



^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
  2021-03-21  4:28 ` ericonr
  2021-03-21  4:37 ` ahesford
@ 2021-03-21  7:51 ` Vaelatern
  2021-03-21 18:04 ` mobinmob
                   ` (16 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: Vaelatern @ 2021-03-21  7:51 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 246 bytes --]

New comment by Vaelatern on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803527497

Comment:
Someone might be relying on this in an embedded service. At best this warrants a line in the void-docs.

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (2 preceding siblings ...)
  2021-03-21  7:51 ` Vaelatern
@ 2021-03-21 18:04 ` mobinmob
  2021-03-21 18:32 ` ericonr
                   ` (15 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: mobinmob @ 2021-03-21 18:04 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 719 bytes --]

New comment by mobinmob on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803633455

Comment:
@ericonr I will write an INSTALL.msg ;)
@ahesford Ι fully agree with getting -F out of $OPTS. I am using the same logic in the [66 services](https://github.com/mobinmob/void-66-services).  I think there are others runit services in the repo that can benefit from something similar - that is seperation of optional and mandatory switches.  Key generation is a part of all three ssh services in the repo (openssh, dropbear, tinyssh).
@Vaelatern It is ultimately a matter or policy. Disabling password login for root is a good practice. Users can rely on all sorts of things :)

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (3 preceding siblings ...)
  2021-03-21 18:04 ` mobinmob
@ 2021-03-21 18:32 ` ericonr
  2021-03-21 19:01 ` mobinmob
                   ` (14 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: ericonr @ 2021-03-21 18:32 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 570 bytes --]

New comment by ericonr on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803638008

Comment:
@mobinmob the issue here is that we'd be changing the service behavior on an update, and it's possible someone might miss it and get locked out after a reboot. Documenting that the default service allows root login might be the safest way forward (though I'd suggest keeping it disabled in your own services). 

Does dropbear work fine if you specify `-F` twice, as well? Otherwise someone with a `conf` file might have issues.

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (4 preceding siblings ...)
  2021-03-21 18:32 ` ericonr
@ 2021-03-21 19:01 ` mobinmob
  2021-03-21 19:02 ` mobinmob
                   ` (13 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: mobinmob @ 2021-03-21 19:01 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 910 bytes --]

New comment by mobinmob on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803642132

Comment:
> @mobinmob the issue here is that we'd be changing the service behavior on an update, and it's possible someone might miss it and get locked out after a reboot. Documenting that the default service allows root login might be the safest way forward (though I'd suggest keeping it disabled in your own services).

I am aware of that danger. I believe that having the same defaults as the de-facto standard implementation has merits.
Will a comment in the run file proposing the `-g` flag be adequate documentation?

> 
> Does dropbear work fine if you specify `-F` twice, as well? Otherwise someone with a `conf` file might have issues.

I just checked. It produces an error in the log (`Not backgrounding`) but works and other switches work as they should.



^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (5 preceding siblings ...)
  2021-03-21 19:01 ` mobinmob
@ 2021-03-21 19:02 ` mobinmob
  2021-03-21 19:08 ` mobinmob
                   ` (12 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: mobinmob @ 2021-03-21 19:02 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 937 bytes --]

New comment by mobinmob on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803642132

Comment:
> @mobinmob the issue here is that we'd be changing the service behavior on an update, and it's possible someone might miss it and get locked out after a reboot. Documenting that the default service allows root login might be the safest way forward (though I'd suggest keeping it disabled in your own services).

I am aware of that danger. I believe that having the same defaults as the de-facto standard implementation has merits.
Will a comment in the run file proposing the `-g` flag be adequate documentation?

> 
> Does dropbear work fine if you specify `-F` twice, as well? Otherwise someone with a `conf` file might have issues.

I just checked. It produces an error in the log (`Not backgrounding`) for the second `-F` switch but works and other switches work as they should.



^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (6 preceding siblings ...)
  2021-03-21 19:02 ` mobinmob
@ 2021-03-21 19:08 ` mobinmob
  2021-03-22  0:11 ` Vaelatern
                   ` (11 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: mobinmob @ 2021-03-21 19:08 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 1034 bytes --]

New comment by mobinmob on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803642132

Comment:
> @mobinmob the issue here is that we'd be changing the service behavior on an update, and it's possible someone might miss it and get locked out after a reboot. Documenting that the default service allows root login might be the safest way forward (though I'd suggest keeping it disabled in your own services).

I am aware of that danger. I believe that having the same defaults as the de-facto standard implementation has merits.
Will a comment in the run file proposing the `-g` flag be adequate documentation?

> 
> Does dropbear work fine if you specify `-F` twice, as well? Otherwise someone with a `conf` file might have issues.

I just checked. It produces an error in the log (`Not backgrounding`) for the second `-F` switch but works and other switches work as they should.

Edit: Αctually the log output is the same with either one or two -F switches. Nothing changes ;)

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (7 preceding siblings ...)
  2021-03-21 19:08 ` mobinmob
@ 2021-03-22  0:11 ` Vaelatern
  2021-03-22  0:12 ` Vaelatern
                   ` (10 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: Vaelatern @ 2021-03-22  0:11 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 226 bytes --]

New comment by Vaelatern on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803687038

Comment:
INSTALL.msg noting a change isn't enough. This can really break someone's workflow.

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (8 preceding siblings ...)
  2021-03-22  0:11 ` Vaelatern
@ 2021-03-22  0:12 ` Vaelatern
  2021-03-22  9:39 ` mobinmob
                   ` (9 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: Vaelatern @ 2021-03-22  0:12 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 280 bytes --]

New comment by Vaelatern on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803687038

Comment:
INSTALL.msg noting a change isn't enough. This can really break someone's workflow, or break devices out there without other easy access.

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (9 preceding siblings ...)
  2021-03-22  0:12 ` Vaelatern
@ 2021-03-22  9:39 ` mobinmob
  2021-03-22  9:42 ` mobinmob
                   ` (8 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: mobinmob @ 2021-03-22  9:39 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 545 bytes --]

New comment by mobinmob on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803917821

Comment:
> INSTALL.msg noting a change isn't enough. This can really break someone's workflow, or break devices out there without other easy access.

I get that :p
I am trying to find out what is the best way to document that the service allows root logins and suggest `-g` in order to follow what openssh does. Is a comment in the service and/or in an INSTAL.msg enough to accomplish what @ericonr suggested?

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (10 preceding siblings ...)
  2021-03-22  9:39 ` mobinmob
@ 2021-03-22  9:42 ` mobinmob
  2021-03-22  9:55 ` mobinmob
                   ` (7 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: mobinmob @ 2021-03-22  9:42 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 558 bytes --]

New comment by mobinmob on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803917821

Comment:
> INSTALL.msg noting a change isn't enough. This can really break someone's workflow, or break devices out there without other easy access.

I get that :p
I am trying to find out what is the best way to document that the service allows password logins for root and suggest `-g` in order to follow what openssh does. Is a comment in the service and/or in an INSTAL.msg enough to accomplish what @ericonr suggested?

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (11 preceding siblings ...)
  2021-03-22  9:42 ` mobinmob
@ 2021-03-22  9:55 ` mobinmob
  2021-03-22 16:34 ` Piraty
                   ` (6 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: mobinmob @ 2021-03-22  9:55 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 559 bytes --]

New comment by mobinmob on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-803917821

Comment:
> INSTALL.msg noting a change isn't enough. This can really break someone's workflow, or break devices out there without other easy access.

I get that :p
I am trying to find out what is the best way to document that the service allows password logins for root and suggest `-g` in order to follow what openssh does. Is a comment in the service and/or in an INSTALL.msg enough to accomplish what @ericonr suggested?

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (12 preceding siblings ...)
  2021-03-22  9:55 ` mobinmob
@ 2021-03-22 16:34 ` Piraty
  2021-04-25 18:33 ` Piraty
                   ` (5 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: Piraty @ 2021-03-22 16:34 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 419 bytes --]

New comment by Piraty on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-804211993

Comment:
back when i did this for openssh (5ce7496691e02dd264adc2f86c570c38a9976fc6, #17596, https://github.com/void-linux/void-mklive/pull/100), only one person complained in IRC but of course admitted that the move was fine to do and their (password login based ) setup was not the best

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (13 preceding siblings ...)
  2021-03-22 16:34 ` Piraty
@ 2021-04-25 18:33 ` Piraty
  2021-04-26  0:00 ` Vaelatern
                   ` (4 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: Piraty @ 2021-04-25 18:33 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 194 bytes --]

New comment by Piraty on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-826369220

Comment:
I am in favor of merging this. objections @Vaelatern ?

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (14 preceding siblings ...)
  2021-04-25 18:33 ` Piraty
@ 2021-04-26  0:00 ` Vaelatern
  2021-04-26  0:01 ` the-maldridge
                   ` (3 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: Vaelatern @ 2021-04-26  0:00 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 333 bytes --]

New comment by Vaelatern on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-826418326

Comment:
Strongly opposed to merging as-is.

It's a good flag. We should have had it enabled from the beginning. But we didn't.

I think it's not possible to safely migrate users in this context.

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (15 preceding siblings ...)
  2021-04-26  0:00 ` Vaelatern
@ 2021-04-26  0:01 ` the-maldridge
  2021-04-26  0:01 ` [PR PATCH] [Closed]: " the-maldridge
                   ` (2 subsequent siblings)
  19 siblings, 0 replies; 21+ messages in thread
From: the-maldridge @ 2021-04-26  0:01 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 367 bytes --]

New comment by the-maldridge on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-826418636

Comment:
Seconded, this is an incredibly bad idea, we can't change flags that would permanently lock out a user like this.  We can add it as an INSTALL.MSG if you want, but changing the config on this package now isn't an option.

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: [PR PATCH] [Closed]: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (16 preceding siblings ...)
  2021-04-26  0:01 ` the-maldridge
@ 2021-04-26  0:01 ` the-maldridge
  2021-04-26  6:53 ` Piraty
  2021-04-26 14:26 ` Vaelatern
  19 siblings, 0 replies; 21+ messages in thread
From: the-maldridge @ 2021-04-26  0:01 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 1599 bytes --]

There's a closed pull request on the void-packages repository

dropbear: disable password logins for root.
https://github.com/void-linux/void-packages/pull/29599

Description:
<!-- Mark items with [x] where applicable -->

#### General
- [ ] This is a new package and it conforms to the [quality requirements](https://github.com/void-linux/void-packages/blob/master/Manual.md#quality-requirements)

#### Have the results of the proposed changes been tested?
- [ ] I use the packages affected by the proposed changes on a regular basis and confirm this PR works for me
- [X] I generally don't use the affected packages but briefly tested this PR

This PR disables password logins for root by using the `-g` switch in the runit service. The change follows the default policy for openssh.


<!--
If GitHub CI cannot be used to validate the build result (for example, if the
build is likely to take several hours), make sure to
[skip CI](https://github.com/void-linux/void-packages/blob/master/CONTRIBUTING.md#continuous-integration).
When skipping CI, uncomment and fill out the following section.
Note: for builds that are likely to complete in less than 2 hours, it is not
acceptable to skip CI.
-->
<!-- 
#### Does it build and run successfully? 
(Please choose at least one native build and, if supported, at least one cross build. More are better.)
- [ ] I built this PR locally for my native architecture, (ARCH-LIBC)
- [ ] I built this PR locally for these architectures (if supported. mark crossbuilds):
  - [ ] aarch64-musl
  - [ ] armv7l
  - [ ] armv6l-musl
-->


^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (17 preceding siblings ...)
  2021-04-26  0:01 ` [PR PATCH] [Closed]: " the-maldridge
@ 2021-04-26  6:53 ` Piraty
  2021-04-26 14:26 ` Vaelatern
  19 siblings, 0 replies; 21+ messages in thread
From: Piraty @ 2021-04-26  6:53 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 306 bytes --]

New comment by Piraty on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-826558112

Comment:
hinting about the intended change in INSTALL.msg for a predefined period (6m? 1y?) appears reasonable to me, Void used such similar periods for similar changes before

^ permalink raw reply	[flat|nested] 21+ messages in thread

* Re: dropbear: disable password logins for root.
  2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
                   ` (18 preceding siblings ...)
  2021-04-26  6:53 ` Piraty
@ 2021-04-26 14:26 ` Vaelatern
  19 siblings, 0 replies; 21+ messages in thread
From: Vaelatern @ 2021-04-26 14:26 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 269 bytes --]

New comment by Vaelatern on void-packages repository

https://github.com/void-linux/void-packages/pull/29599#issuecomment-826878767

Comment:
Dropbear users may be in embedded scenarios where any predefined period may miss someone. 5 years would feel like the minimum.

^ permalink raw reply	[flat|nested] 21+ messages in thread

end of thread, other threads:[~2021-04-26 14:26 UTC | newest]

Thread overview: 21+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-03-19 18:51 [PR PATCH] dropbear: disable password logins for root mobinmob
2021-03-21  4:28 ` ericonr
2021-03-21  4:37 ` ahesford
2021-03-21  7:51 ` Vaelatern
2021-03-21 18:04 ` mobinmob
2021-03-21 18:32 ` ericonr
2021-03-21 19:01 ` mobinmob
2021-03-21 19:02 ` mobinmob
2021-03-21 19:08 ` mobinmob
2021-03-22  0:11 ` Vaelatern
2021-03-22  0:12 ` Vaelatern
2021-03-22  9:39 ` mobinmob
2021-03-22  9:42 ` mobinmob
2021-03-22  9:55 ` mobinmob
2021-03-22 16:34 ` Piraty
2021-04-25 18:33 ` Piraty
2021-04-26  0:00 ` Vaelatern
2021-04-26  0:01 ` the-maldridge
2021-04-26  0:01 ` [PR PATCH] [Closed]: " the-maldridge
2021-04-26  6:53 ` Piraty
2021-04-26 14:26 ` Vaelatern

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).