From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with archive (Exim 4.43) id 1Mdmmb-0004aD-63 for mharc-grub-devel@gnu.org; Wed, 19 Aug 2009 11:09:01 -0400 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1MdmmY-0004YD-RN for grub-devel@gnu.org; Wed, 19 Aug 2009 11:08:58 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1MdmmT-0004Sg-Bs for grub-devel@gnu.org; Wed, 19 Aug 2009 11:08:58 -0400 Received: from [199.232.76.173] (port=50550 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1MdmmS-0004SY-V7 for grub-devel@gnu.org; Wed, 19 Aug 2009 11:08:52 -0400 Received: from mx20.gnu.org ([199.232.41.8]:53244) by monty-python.gnu.org with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.60) (envelope-from ) id 1MdmmS-00006h-BA for grub-devel@gnu.org; Wed, 19 Aug 2009 11:08:52 -0400 Received: from xvm-190-8.ghst.net ([217.70.190.8] helo=aybabtu.com) by mx20.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1MdmmR-0000Kw-In for grub-devel@gnu.org; Wed, 19 Aug 2009 11:08:51 -0400 Received: from [192.168.10.10] (helo=thorin) by aybabtu.com with esmtp (Exim 4.69) (envelope-from ) id 1MdmmP-0007Rp-D2 for grub-devel@gnu.org; Wed, 19 Aug 2009 17:08:49 +0200 Received: from rmh by thorin with local (Exim 4.69) (envelope-from ) id 1MdmmO-00023J-Qh for grub-devel@gnu.org; Wed, 19 Aug 2009 17:08:48 +0200 Date: Wed, 19 Aug 2009 17:08:48 +0200 From: Robert Millan To: The development of GRUB 2 Message-ID: <20090819150848.GA7859@thorin> References: <20090605173640.GW7367@riva.ucam.org> <153689213.20090605201753@gmail.com> <1248619241.25072.19.camel@fz.local> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: Organization: free as in freedom X-Message-Flag: Worried about Outlook viruses? Switch to Thunderbird! www.mozilla.com/thunderbird X-Debbugs-No-Ack: true User-Agent: Mutt/1.5.18 (2008-05-17) X-Detected-Operating-System: by mx20.gnu.org: GNU/Linux 2.6 (newer, 3) X-detected-operating-system: by monty-python.gnu.org: GNU/Linux 2.6, seldom 2.4 (older, 4) Subject: Re: Re[2]: 'password' command in GRUB 2? X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: The development of GRUB 2 List-Id: The development of GRUB 2 List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Aug 2009 15:08:59 -0000 On Sun, Jul 26, 2009 at 06:20:03PM +0200, Vladimir 'phcoder' Serbinenko wrote: > I think you underestimate yourself. Especially if we agree on function > propotypes you are completely able to implement. Discussing on IRC I > formulated 3 criteria which our system must satisfy: > (1) you can't access shell without authenticating as "superuser". > (2) boot some entries without authenticating as one of users (list of > allowed users may differ per menuentry) > (3) new autentication schemes (e.g. ssh keys) should be implementable as modules > > I propose following implementation guidelines: > Syntax: > set superusers=root,gnu > password root "GRUB" > md5_password operator $MD5$MD5$MD5 > fingeprint gnu /gnu.fp > menuentry "single mode" --users root,operator { > .... > } > > Wher user tries to authenticate GRUB2 will ask him login and then call > a function from module > > Prototypes: > grub_err_t grub_auth_register_authentication (const char *user, > grub_err_t (*callback) (const char*, void *), void *arg); > this will ask to call callback if login is USER. > grub_err_t grub_auth_authenticate (const char *user); > grub_err_t grub_auth_deauthenticate (const char *user); > grub_err_t grub_auth_check_authentication (const char *userlist); > > grub_auth_check_authentication will output login prompt if no user > from userlist is already authenticated I agree with this proposal in general. Except with the concept of "users", which I think might be overkill. GRUB is not a Un*x with its /home and per-user settings. These passwords just protect resources, so I'm not sure if there's a point in managing users as an intermediate layer between passwords and the restricted resource. What does everyone else think? -- Robert Millan The DRM opt-in fallacy: "Your data belongs to us. We will decide when (and how) you may access your data; but nobody's threatening your freedom: we still allow you to remove your data and not access it at all."