* On the CD or on a newly installed system, create the root account

with an empty password, rather than with a hashed empty password. The latter is a security risk, because it allows remote root logins if a user enables sshd before setting a proper root password. * Allow empty passwords for login and slim, but nothing else. svn path=/nixos/trunk/; revision=17833
2009-10-15 14:41:59 +00:00
parent 77ec877a8c
commit 5dfaf565bf
3 changed files with 14 additions and 4 deletions
--- a/modules/system/activation/activation-script.nix
+++ b/modules/system/activation/activation-script.nix
@@ -112,7 +112,6 @@ let
          # (bootstrap problem!).
          echo "root:x:0:0:System administrator:$rootHome:${config.users.defaultUserShell}" >> /etc/passwd
          echo "root::::::::" >> /etc/shadow
-          echo | passwd --stdin root
      fi
    '' [
      "defaultPath" # path to touch & passwd