[lxc-devel] default root password has to be random in default debian template
Ondřej Surý
ondrej at sury.org
Tue Aug 19 15:28:55 UTC 2014
Hi,
[probably also applies to more templates]
the default security of debian template is horrible. Default sshd_config
permits root login with password and sets the default password to
'root'.
Please at least pull changes from:
https://bugs.debian.org/758643
https://bugs.debian.org/758647
Note that this needs pwgen to generate new password, so you might
want to generate random password using some common tool or method
(openssl, etc...)
And please do a similar security audit of all templates shipping with
lxc,
I have also seen ubuntu/ubuntu in the ubuntu template...
Cheers,
--
Ondřej Surý <ondrej at sury.org>
Knot DNS (https://www.knot-dns.cz/) – a high-performance DNS server
More information about the lxc-devel
mailing list