[lxc-devel] root and ubuntu pass
Stéphane Graber
stgraber at ubuntu.com
Thu Apr 17 13:38:31 UTC 2014
On Thu, Apr 17, 2014 at 02:07:08PM +0200, Ducos Laurent wrote:
> Hello
> Is it possible to secure the password generated by debian and ubuntu
> templates like this ?
>
> password=$(apg -a 0 -M ncl -n 1 -x 10 -m 8)
> echo "$user:$password" | chroot $rootfs chpasswd
> echo "$user password is $password !"
>
> root:root or ubuntu:ubuntu by default is very insecure
The Ubuntu template supports --password which you should be using for
that, the Debian template doesn't but writing a patch for this should be
pretty simple.
We won't change the default values as way too many people rely on them
for automation and it's really quite simple to script a password change
to something safer before you start the container.
--
Stéphane Graber
Ubuntu developer
http://www.ubuntu.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.linuxcontainers.org/pipermail/lxc-devel/attachments/20140417/f2e04e1b/attachment.sig>
More information about the lxc-devel
mailing list