Date: Tue, 30 May 2023 08:41:33 +0200 From: Alexander Leidinger <Alexander@leidinger.net> To: bob prohaska <fbsd@www.zefox.net> Cc: Yuri <yuri@aetern.org>, freebsd-current@freebsd.org Subject: Re: Surprise null root password Message-ID: <20230530084133.Horde.4VevT2KY4XCtqoJgvP08jyB@webmail.leidinger.net> In-Reply-To: <ZHFADmqAmjJOCuIH@www.zefox.net> References: <ZHDt21wFlpJfQKEs@www.zefox.net> <945C9B6D-F2A8-4F0D-BDB0-49A3DE870168@karels.net> <ZHD%2BND6ilBGaOgcv@www.zefox.net> <CAG5KPzwLheqT_EuiexFRJuD4PyFNzyhCQfmToe4myr3K3YfKpQ@mail.gmail.com> <ZHEGpyKSWj4X/6Lk@www.zefox.net> <61e30711-f0da-2f42-3a6f-9bd91fc6b1ce@aetern.org> <ZHFADmqAmjJOCuIH@www.zefox.net>
next in thread | previous in thread | raw e-mail | index | archive | help
This message is in MIME format and has been PGP signed. --=_Rpe4aGUFSs02wNReq4vofJ3 Content-Type: text/plain; charset=utf-8; format=flowed; DelSp=Yes Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Quoting bob prohaska <fbsd@www.zefox.net> (from Fri, 26 May 2023=20=20 16:26:06=20-0700): > On Fri, May 26, 2023 at 10:55:49PM +0200, Yuri wrote: >> >> The question is how you update the configuration files, >> mergemaster/etcupdate/something else? >> > > Via etcupdate after installworld. In the event the system > requests manual intervention I accept "theirs all". It seems > odd if that can null a root password. > > Still, it does seem an outside possibility. I could see it adding > system users, but messing with root's existing password seems a > bit unexpected. As you are posting to -current@, I expect you to report this issue=20=20 about=2014-current systems. As such: there was a "recent" change=20=20 (2021-10-20)=20to the root entry to change the shell. =20=20=20=20=20=20 https://cgit.freebsd.org/src/commit/etc/master.passwd?id=3Dd410b585b6f00a26= c2de7724d6576a3ea7d548b7 By blindly accepting all changes, this has reset the PW to the default=20= =20 setting=20(empty). I suggest to review changes ("df" instead of "tf" in etcupdate) to at=20=20 least=20those files which you know you have modified, including the=20=20 password/group=20stuff. After that you can decide if the diff which is=20= =20 shown=20with "df" can be applied ("tf"), or if you want to keep the old=20= =20 version=20("mf"), or if you want to modify the current file ("e", with=20= =20 both=20versions present in the file so that you can copy/paste between=20= =20 the=20different versions and keep what you need). Bye, Alexander. --=20 http://www.Leidinger.net=20Alexander@Leidinger.net: PGP 0x8F31830F9F2772BF http://www.FreeBSD.org netchild@FreeBSD.org : PGP 0x8F31830F9F2772BF --=_Rpe4aGUFSs02wNReq4vofJ3 Content-Type: application/pgp-signature Content-Description: Digitale PGP-Signatur Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIzBAABCAAdFiEER9UlYXp1PSd08nWXEg2wmwP42IYFAmR1mp0ACgkQEg2wmwP4 2IZq4hAArHrDx25Ilk+njKh+EGkfPwUKDuDjtlcqFuzp9K2VsTACoU4d9M9a6AB/ I9wJRvgynJj6PRZpq29uEm1ScWbVwScTbaH5cpVt4WvbLbywDrJdmi42xH5mv7Ud bJSEYWkpVJg735RBk6ZIRB+85lKY3cUg+B20gh6AYX3tdwPDA7QYR/GCcWMnQOGM k3NTmlI4rVKaUw2zTv+f/ErQZA1Izwb9f1mYsfXzo3jsDY0fFa62Ym+0srzC+L/c wQK3K1JRlAvbaWb7aQlT5WeMRHRUKp3fHsA1KJJqLKa6GAkl78tnTOfrENT1B8wh Ka4RrJCJV5dYazQRTuS6uW9sOoyjPOAIVEM5G6Jqw6B0j6O2HhNGQcrNg+UPuIcm Q8OOYOjqdeK/I5eqXWLzGB2v1PoKNQf+kB4Se1OSpZxesgpYzQSa5XGsM2yUD0ce HkJKAFvjY9oCzAvd1Mw7M3SXAFkOXCC1qK661km1RPY2rOf79TYLZ7cQFmQgSGP5 FTgqLvKcJRtWAl7ihcSFW3Zo1mUZz9AzaoKFlxFQK3rukXaTaKWYa9TfEXmFW4Aw Km8NqXrZ7pRn49Cp5Um/JrEsq4E+WEnYLTMPBKW5/O2w0+YHWCz6HDriGeZdlD7L vaeGkiHkXacmrdKlCf0p60V6eBJUX/DnwJV6jAJpMyaGAPm2KGo= =dsyk -----END PGP SIGNATURE----- --=_Rpe4aGUFSs02wNReq4vofJ3--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20230530084133.Horde.4VevT2KY4XCtqoJgvP08jyB>