bug#44808: Default to allowing password authentication on leaves users v

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#44808: Default to allowing password authentication on leaves users v

From:	Ludovic Courtès
Subject:	bug#44808: Default to allowing password authentication on leaves users vulnerable
Date:	Fri, 11 Dec 2020 19:10:02 +0100
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux)

Hi,

Mark H Weaver <mhw@netris.org> skribis:

> gnu/services/ssh.scm:570:31, here:
>
>   
> https://git.savannah.gnu.org/cgit/guix.git/tree/gnu/services/ssh.scm?id=ec2eccbf3d1a6378c5ebf1e3d17ec72b4b2a4cd0#n570
>
> Here's what I see when I build a system:
>
> mhw@jojen ~/guix$ ./pre-inst-env guix system build /etc/config.scm
> gnu/services/ssh.scm:570:31: warning: The default value of the 
> 'password-authentication?'
> field of 'openssh-configuration' will change from #true to #false in the
> future.  Explicitly set it to #true to allow password authentication.
> /gnu/store/v9ri5ya4xb1fxnmckg1j1qr2qki73w36-system

I ended up reverting it in d8051557aee9fa252b015ff67cc15681e8540777
because it affects everyone, I couldn’t think of an easy way to address
that while still getting the warning when we want it, and it seems we
may have to discuss the issue a bit more (apologies for assuming we had
reached a consensus!).

Thanks,
Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

bug#44808: Default to allowing password authentication on leaves users vulnerable, (continued)
- bug#44808: Default to allowing password authentication on leaves users vulnerable, Christopher Lemmer Webber, 2020/12/05
  - bug#44808: Default to allowing password authentication on leaves users vulnerable, Ludovic Courtès, 2020/12/07
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Dr. Arne Babenhauserheide, 2020/12/07
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Christopher Lemmer Webber, 2020/12/07
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Dr. Arne Babenhauserheide, 2020/12/07
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Mark H Weaver, 2020/12/07
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Ludovic Courtès, 2020/12/08
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Mark H Weaver, 2020/12/08
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Ludovic Courtès, 2020/12/10
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Mark H Weaver, 2020/12/10
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Ludovic Courtès <=
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Christopher Lemmer Webber, 2020/12/08
  - bug#44808: Default to allowing password authentication on leaves users vulnerable, Leo Famulari, 2020/12/07
    - bug#44808: Default to allowing password authentication on leaves users vulnerable, Christopher Lemmer Webber, 2020/12/07

Prev by Date: bug#45051: Guix pull fails: `In procedure put-string: Wrong type argument in position 1 (expecting open output port): #<closed: string 7f1182257850>`
Next by Date: bug#45051: Guix pull fails: `In procedure put-string: Wrong type argument in position 1 (expecting open output port): #<closed: string 7f1182257850>`
Previous by thread: bug#44808: Default to allowing password authentication on leaves users vulnerable
Next by thread: bug#44808: Default to allowing password authentication on leaves users vulnerable
Index(es):
- Date
- Thread