From: James Knight <james.d.knight@live.com>
To: buildroot@busybox.net
Subject: [Buildroot] [PATCH 1/1] scripts/mkusers: allow users with no password value set
Date: Sat, 23 May 2015 06:11:51 +0000 (UTC) [thread overview]
Message-ID: <loom.20150523T080722-553@post.gmane.org> (raw)
In-Reply-To: 20150522221522.GD5153@free.fr
Yann,
> On 2015-05-22 11:36 -0400, James Knight spake thusly:
> > The following allows a user definition to specify that a created
user
> > entry should not have a password value set. Original implementation
> > allowed a user definition to provide a password value of "-" (no
quotes)
> > to generate a crypt-encoded empty string value. In some cases, it
may be
> > desired to have no value specified for a user's password. By using a
> > value "-" for a password, no value will be set in the shadow value.
>
> I fail to see how that is different from using an empty password as
> (without quotes): "="
>
> From man 5 passwd:
>
> The encrypted password field may be blank, in which case no
password
> is required to authenticate as the specified login name. However,
> some applications which read the /etc/passwd file may decide not
to
> permit any access at all if the password field is blank.
>
> Thus, I believe it is safest to store an encoded empty password rather
> than set the password field empty.
>
> Did I miss something?
>
> Of course, the manual could be updated to reflect that a password-less
> account should use "=" in the password field.
>
> Regards,
> Yann E. MORIN.
Logging into a session with an encoded empty password will prompt me to
enter a password since it doesn't know the password is empty. In this
case, I would simply just hit enter to supply an empty password and it
would authenticate.
If I alternatively set the password field blank, my login session will
not prompt a password and will just login (since it knows there is no
password set). This is what I'm hoping to achieve for the current target
I'm developing.
next prev parent reply other threads:[~2015-05-23 6:11 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-05-22 15:36 [Buildroot] [PATCH 1/1] scripts/mkusers: allow users with no password value set James Knight
2015-05-22 22:15 ` Yann E. MORIN
2015-05-23 6:11 ` James Knight [this message]
2015-05-23 9:18 ` Yann E. MORIN
2015-05-23 9:23 ` Yann E. MORIN
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=loom.20150523T080722-553@post.gmane.org \
--to=james.d.knight@live.com \
--cc=buildroot@busybox.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox