On Tue, Nov 08, 2016 at 04:49:42PM -0500, Stephen Gallagher wrote: > SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many > My proposal is that we should consider changing the default hostname for Fedora > 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a How about non-yelly Fedora-XXXXXXXXXXX? Since SUSE apparently does lower case, that should be fine, right?

On Tue, Nov 8, 2016 at 6:14 PM, Zbigniew Jędrzejewski-Szmek <zbyszek(a)in.waw.pl&gt; wrote: > On Tue, Nov 08, 2016 at 05:25:36PM -0500, Matthew Miller wrote: >> On Tue, Nov 08, 2016 at 04:49:42PM -0500, Stephen Gallagher wrote: >> > SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many >> > My proposal is that we should consider changing the default hostname for Fedora >> > 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a >> >> How about non-yelly Fedora-XXXXXXXXXXX? Since SUSE apparently does >> lower case, that should be fine, right? > > Bastian Nocera also filed https://bugzilla.redhat.com/show_bug.cgi?id=1392925, > where he proposes "fedora" as the hostname. I think "fedora" is better than > "localhost", and a non-constant hostname would be even better. > For interactive installs (like with anaconda) it would be great if we could > ask for the hostname. For non-interactive ones, "Fedora-[0-9a-z-]{8}" seems > like a good option (*). It would give "branding", and solve the freeipa issues. > It would also be a good default for the interactive case, so that people can > "click through" without having to pick anything. > > (*) The suffix could include dashes for more possibilities, but they should > not be adjacent or at the end. I'm in favor of defaulting to "Fedora-[0-9a-z-]{8}" myself. However, I'm concerned that people don't realize that we can, in fact, set the hostname during installation. People usually don't because Anaconda doesn't currently make that mandatory or otherwise note that it's possible during the initial panel of spokes (hint: it's the networking spoke), and so the default of "localhost" continues on without anyone being the wiser.

On Tue, Nov 8, 2016 at 6:25 PM, Andrew Lutomirski <luto(a)mit.edu&gt; wrote: > On Tue, Nov 8, 2016 at 3:19 PM, Neal Gompa <ngompa13(a)gmail.com&gt; wrote: >> On Tue, Nov 8, 2016 at 6:14 PM, Zbigniew Jędrzejewski-Szmek >> <zbyszek(a)in.waw.pl&gt; wrote: >>> On Tue, Nov 08, 2016 at 05:25:36PM -0500, Matthew Miller wrote: >>>> On Tue, Nov 08, 2016 at 04:49:42PM -0500, Stephen Gallagher wrote: >>>> > SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many >>>> > My proposal is that we should consider changing the default hostname for Fedora >>>> > 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a >>>> >>>> How about non-yelly Fedora-XXXXXXXXXXX? Since SUSE apparently does >>>> lower case, that should be fine, right? >>> >>> Bastian Nocera also filed https://bugzilla.redhat.com/ show_bug.cgi?id=1392925, >>> where he proposes "fedora" as the hostname. I think "fedora" is better than >>> "localhost", and a non-constant hostname would be even better. >>> For interactive installs (like with anaconda) it would be great if we could >>> ask for the hostname. For non-interactive ones, "Fedora-[0-9a-z-]{8}" seems >>> like a good option (*). It would give "branding", and solve the freeipa issues. >>> It would also be a good default for the interactive case, so that people can >>> "click through" without having to pick anything. >>> >>> (*) The suffix could include dashes for more possibilities, but they should >>> not be adjacent or at the end. >> >> I'm in favor of defaulting to "Fedora-[0-9a-z-]{8}" myself. However, >> I'm concerned that people don't realize that we can, in fact, set the >> hostname during installation. People usually don't because Anaconda >> doesn't currently make that mandatory or otherwise note that it's >> possible during the initial panel of spokes (hint: it's the networking >> spoke), and so the default of "localhost" continues on without anyone >> being the wiser. >> >> > > If the hostname is non-constant, can we also arrange that, by default, > this hostname is never sent over the network? In particular, I think > that DHCP requests should *not* include this hostname. We're already > starting to randomize MAC addresses -- there's no reason to give a > persistent per-installation identifier to every network. The idea is that the hostname is randomly generated at install time. It definitely is constant. And speaking from experience, not including the hostname in DHCP requests breaks quite a few user expectations (especially the ability to identify the computer by name).

On 11/08/2016 06:25 PM, Andrew Lutomirski wrote: > On Tue, Nov 8, 2016 at 3:19 PM, Neal Gompa <ngompa13(a)gmail.com&gt; wrote: >> On Tue, Nov 8, 2016 at 6:14 PM, Zbigniew Jędrzejewski-Szmek >> <zbyszek(a)in.waw.pl&gt; wrote: >>> On Tue, Nov 08, 2016 at 05:25:36PM -0500, Matthew Miller wrote: >>>> On Tue, Nov 08, 2016 at 04:49:42PM -0500, Stephen Gallagher wrote: >>>>> SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many >>>>> My proposal is that we should consider changing the default hostname for Fedora >>>>> 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a >>>> >>>> How about non-yelly Fedora-XXXXXXXXXXX? Since SUSE apparently does >>>> lower case, that should be fine, right? >>> >>> Bastian Nocera also filed https://bugzilla.redhat.com/show_bug.cgi?id=1392925, >>> where he proposes "fedora" as the hostname. I think "fedora" is better than >>> "localhost", and a non-constant hostname would be even better. >>> For interactive installs (like with anaconda) it would be great if we could >>> ask for the hostname. For non-interactive ones, "Fedora-[0-9a-z-]{8}" seems >>> like a good option (*). It would give "branding", and solve the freeipa issues. >>> It would also be a good default for the interactive case, so that people can >>> "click through" without having to pick anything. >>> >>> (*) The suffix could include dashes for more possibilities, but they should >>> not be adjacent or at the end. >> >> I'm in favor of defaulting to "Fedora-[0-9a-z-]{8}" myself. However, >> I'm concerned that people don't realize that we can, in fact, set the >> hostname during installation. People usually don't because Anaconda >> doesn't currently make that mandatory or otherwise note that it's >> possible during the initial panel of spokes (hint: it's the networking >> spoke), and so the default of "localhost" continues on without anyone >> being the wiser. >> >> > > If the hostname is non-constant, can we also arrange that, by default, > this hostname is never sent over the network? In particular, I think > that DHCP requests should *not* include this hostname. We're already > starting to randomize MAC addresses -- there's no reason to give a > persistent per-installation identifier to every network. If this is a problem (and I'm not necessarily convinced it is), it's a problem already for anyone using DHCP who set a hostname manually. The fact that the default happens to be constant (and therefore indistinguishable) is a side-effect. If this is something that is genuinely concerning from a privacy point of view, then that should be changed in the DHCP client software rather than at the default hostname level. If it's not acceptable to send a unique default hostname then it must be equally unacceptable to send a manually selected hostname. (At least a randomly-generated one is only unique; a chosen one may in fact be possible to use for individual identification as well.)

On 11/09/2016 08:02 AM, Simo Sorce wrote: > On Tue, 2016-11-08 at 23:05 -0500, Stephen Gallagher wrote: >> On 11/08/2016 06:25 PM, Andrew Lutomirski wrote: >>> On Tue, Nov 8, 2016 at 3:19 PM, Neal Gompa <ngompa13(a)gmail.com&gt; wrote: >>>> On Tue, Nov 8, 2016 at 6:14 PM, Zbigniew Jędrzejewski-Szmek >>>> <zbyszek(a)in.waw.pl&gt; wrote: >>>>> On Tue, Nov 08, 2016 at 05:25:36PM -0500, Matthew Miller wrote: >>>>>> On Tue, Nov 08, 2016 at 04:49:42PM -0500, Stephen Gallagher wrote: >>>>>>> SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many >>>>>>> My proposal is that we should consider changing the default hostname for Fedora >>>>>>> 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a >>>>>> >>>>>> How about non-yelly Fedora-XXXXXXXXXXX? Since SUSE apparently does >>>>>> lower case, that should be fine, right? >>>>> >>>>> Bastian Nocera also filed https://bugzilla.redhat.com/show_bug.cgi?id=1392925, >>>>> where he proposes "fedora" as the hostname. I think "fedora" is better than >>>>> "localhost", and a non-constant hostname would be even better. >>>>> For interactive installs (like with anaconda) it would be great if we could >>>>> ask for the hostname. For non-interactive ones, "Fedora-[0-9a-z-]{8}" seems >>>>> like a good option (*). It would give "branding", and solve the freeipa issues. >>>>> It would also be a good default for the interactive case, so that people can >>>>> "click through" without having to pick anything. >>>>> >>>>> (*) The suffix could include dashes for more possibilities, but they should >>>>> not be adjacent or at the end. >>>> >>>> I'm in favor of defaulting to "Fedora-[0-9a-z-]{8}" myself. However, >>>> I'm concerned that people don't realize that we can, in fact, set the >>>> hostname during installation. People usually don't because Anaconda >>>> doesn't currently make that mandatory or otherwise note that it's >>>> possible during the initial panel of spokes (hint: it's the networking >>>> spoke), and so the default of "localhost" continues on without anyone >>>> being the wiser. >>>> >>>> >>> >>> If the hostname is non-constant, can we also arrange that, by default, >>> this hostname is never sent over the network? In particular, I think >>> that DHCP requests should *not* include this hostname. We're already >>> starting to randomize MAC addresses -- there's no reason to give a >>> persistent per-installation identifier to every network. >> >> >> If this is a problem (and I'm not necessarily convinced it is), it's a problem >> already for anyone using DHCP who set a hostname manually. The fact that the >> default happens to be constant (and therefore indistinguishable) is a side-effect. >> >> If this is something that is genuinely concerning from a privacy point of view, >> then that should be changed in the DHCP client software rather than at the >> default hostname level. If it's not acceptable to send a unique default hostname >> then it must be equally unacceptable to send a manually selected hostname. (At >> least a randomly-generated one is only unique; a chosen one may in fact be >> possible to use for individual identification as well.) > > Although this is true, one thing we could do is set a default hostname > that is static ("fedora" or similar is fine), and teach the utilities > used to join an AD/IPA/etc.. domain to generate a new random hostname if > they detect the hostname is the generic "static" one. I feel like that's solving a symptom (and one we'd have to keep solving every time we encountered something for which a non-unique hostname would be a problem). It's an option though, of course.

On 11/09/2016 08:02 AM, Simo Sorce wrote: > Although this is true, one thing we could do is set a default hostname > that is static ("fedora" or similar is fine), and teach the utilities > used to join an AD/IPA/etc.. domain to generate a new random hostname if > they detect the hostname is the generic "static" one. The hostname is used in the install-time-generated disk volume names (/dev/mapper/fedora_myhostname-home), so changing it is confusing. Would it make sense to leave the old names? or rename the volumes?

On Wed, 2016-11-09 at 12:58 -0500, Przemek Klosowski wrote: > On 11/09/2016 08:02 AM, Simo Sorce wrote: >> Although this is true, one thing we could do is set a default hostname >> that is static ("fedora" or similar is fine), and teach the utilities >> used to join an AD/IPA/etc.. domain to generate a new random hostname if >> they detect the hostname is the generic "static" one. > The hostname is used in the install-time-generated disk volume names > (/dev/mapper/fedora_myhostname-home), so changing it is confusing. > Would it make sense to leave the old names? or rename the volumes? > _______________________________________________ > devel mailing list --devel(a)lists.fedoraproject.org <mailto:devel@lists.fedoraproject.org> > To unsubscribe send an email todevel-leave(a)lists.fedoraproject.org > <devel-leave(a)lists.fedoraproject.org%0A&gt; Is using a unique volume group name not actually preferable. If one needs to add a disk from one machine to another it avoids the problem of having 2 volume groups with the same name and therefore overlapping LV names. I got bitten by that once. /Louis

If the hostname is non-constant, can we also arrange that, by default, this hostname is never sent over the network? In particular, I think that DHCP requests should *not* include this hostname. We're already starting to randomize MAC addresses -- there's no reason to give a persistent per-installation identifier to every network.

On Tue, Nov 08, 2016 at 03:25:58PM -0800, Andrew Lutomirski wrote: > If the hostname is non-constant, can we also arrange that, by default, > this hostname is never sent over the network? In particular, I think > that DHCP requests should *not* include this hostname. We're already > starting to randomize MAC addresses -- there's no reason to give a > persistent per-installation identifier to every network. There's two different cases that I'm not sure how to resolve elegantly. On a home network or on a business network, having the name available is highly desirable. On a public network, just the opposite.

On 11/09/2016 02:32 PM, Matthew Miller wrote: > On Tue, Nov 08, 2016 at 03:25:58PM -0800, Andrew Lutomirski wrote: >> If the hostname is non-constant, can we also arrange that, by default, >> this hostname is never sent over the network? In particular, I think >> that DHCP requests should *not* include this hostname. We're already >> starting to randomize MAC addresses -- there's no reason to give a >> persistent per-installation identifier to every network. > > There's two different cases that I'm not sure how to resolve elegantly. > On a home network or on a business network, having the name available > is highly desirable. On a public network, just the opposite. Add a checkbox in nm so that users can state whether they are on a trusted network or not ??

On Tue, Nov 8, 2016 at 6:14 PM, Zbigniew Jędrzejewski-Szmek <zbyszek(a)in.waw.pl&gt; wrote: > On Tue, Nov 08, 2016 at 05:25:36PM -0500, Matthew Miller wrote: >> On Tue, Nov 08, 2016 at 04:49:42PM -0500, Stephen Gallagher wrote: >>> SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many >>> My proposal is that we should consider changing the default hostname for Fedora >>> 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a >> How about non-yelly Fedora-XXXXXXXXXXX? Since SUSE apparently does >> lower case, that should be fine, right? > Bastian Nocera also filed https://bugzilla.redhat.com/show_bug.cgi?id=1392925, > where he proposes "fedora" as the hostname. I think "fedora" is better than > "localhost", and a non-constant hostname would be even better. > For interactive installs (like with anaconda) it would be great if we could > ask for the hostname. For non-interactive ones, "Fedora-[0-9a-z-]{8}" seems > like a good option (*). It would give "branding", and solve the freeipa issues. > It would also be a good default for the interactive case, so that people can > "click through" without having to pick anything. > > (*) The suffix could include dashes for more possibilities, but they should > not be adjacent or at the end. I'm in favor of defaulting to "Fedora-[0-9a-z-]{8}" myself. However, I'm concerned that people don't realize that we can, in fact, set the hostname during installation. People usually don't because Anaconda doesn't currently make that mandatory or otherwise note that it's possible during the initial panel of spokes (hint: it's the networking spoke), and so the default of "localhost" continues on without anyone being the wiser.

On Wed, 2016-11-09 at 10:04 +0100, Vít Ondruch wrote: > Speaking in "workstation" context, people might realize it is possible > to change, but they don't care. My computer is not my pet, I don't need > to name it, I couldn't care less. Honestly, it would be better if the > hostname was not shown in my terminal by default. The hostname is shown, historically, to allow you to understand on which machine you are running a command. It is oriented toward a sysadmin world, where it is common to log into many machines via telnet/rsh/ssh to perform various tasks. If we can ship default configurations that show the hostname in PS1 only for shells running on a remotely initiated connection and leave the prompt to something very short then I think that would work fine.

On Tue, 08.11.16 23:14, Zbigniew Jędrzejewski-Szmek (zbyszek(a)in.waw.pl) wrote: > On Tue, Nov 08, 2016 at 05:25:36PM -0500, Matthew Miller wrote: > > On Tue, Nov 08, 2016 at 04:49:42PM -0500, Stephen Gallagher wrote: > > > SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many > > > My proposal is that we should consider changing the default hostname for Fedora > > > 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a > > > > How about non-yelly Fedora-XXXXXXXXXXX? Since SUSE apparently does > > lower case, that should be fine, right? > > Bastian Nocera also filed https://bugzilla.redhat.com/show_bug.cgi?id=1392925, > where he proposes "fedora" as the hostname. I think "fedora" is better than > "localhost", and a non-constant hostname would be even better. > For interactive installs (like with anaconda) it would be great if we could > ask for the hostname. For non-interactive ones, "Fedora-[0-9a-z-]{8}" seems > like a good option (*). It would give "branding", and solve the freeipa issues. > It would also be a good default for the interactive case, so that people can > "click through" without having to pick anything. I'd be careful with this. I'd prefer a more generic default hostname over a more specific, so that we leak as little information about our system onto the network as possible. I mean, using "localhost.localdomain" is already leaky enough, given that only fedora is using this as default hostname — however, it's still better than telling everyone "Hay, I am running Fedora!".

Lennart -- Lennart Poettering, Red Hat _______________________________________________ devel mailing list -- devel(a)lists.fedoraproject.org To unsubscribe send an email to devel-leave(a)lists.fedoraproject.org

I'm not sure is it 100% correct, but my knowledge may be outdated. Both macOS and Ubuntu asks for first user during the installation. Then both suggest hostname, created by combining entered user name and form factor of machine being installed. Ubuntu even incorporates specific model name, read from DMI data. Thus, macOS and Ubuntu on my laptop would suggest hostnames as “tomasz-laptop” or “tomasz-thinkpad-t400”.

Mac OS X and Ubuntu both require the user to pick a machine name at install time explicitly. They do not autogenerate one at all.

My proposal is that we should consider changing the default hostname for Fedora 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a longer random string and therefore lower risk of collision in large environments, while the latter would also provide improved branding for Fedora[2]. Our default BASH shell prompt includes the current machine's hostname.

On 11/09/2016 01:03 PM, Richard W.M. Jones wrote:

> Having it CAPS doesn't sound very nice ... > Yeah, that's fine. I was kind of copying off the windows approach, but I really don't care at all whether we present it in lower-case or upper-case as long as it's consistent.

On Thu, Nov 10, 2016 at 02:08:48PM +0100, Roberto Ragusa wrote: > On 11/09/2016 07:27 PM, Stephen Gallagher wrote: >> On 11/09/2016 01:03 PM, Richard W.M. Jones wrote: > >>> Having it CAPS doesn't sound very nice ... >>> >> >> Yeah, that's fine. I was kind of copying off the windows approach, but I really don't care at all whether we present it in lower-case or upper-case as long as it's consistent. > > All lower case, please. > Lower case is the default everywhere in Unix, and the hostname also contains > an Internet related meaning, where only lower case is used. Nah, the internet is case-insensitive. And Fedora is a name, starts with a capital letter.

On 10 November 2016 at 09:27, Stephen Gallagher <sgallagh(a)redhat.com&gt; wrote: > >>> On 11/09/2016 07:27 PM, Stephen Gallagher wrote: Here are the items I would like to point out: 1. The TLD name should be something that DNS considers a known unknown name. With the fact that IANA is allowing top level domains of all sorts we do not want to end up having .fedora or .foobaz end up causing thousands of computers saying they are in someones domain. So .invalid .localhost .example .local or .test . I expect that .localdomain might not ever be registered but who knows.

2. The XXXXXX is rather important because of two conflicting items. One we don't want it to be too short that collisions might occur a lot, but we don't want it to be too long for readability but also the less collisions the more likely it can be used to track people. If we don't care about making breadcrumbs which could be used to 'track' people we need to be clear about it so that people who are not wanting that can steer clear. [My 'I am an idiot about randomness' solution would be uuidgen | sum and that number is used for this. There is a good chance of uniqueness per small site and non-uniqueness overall. ]

3. case-sensitivity argument about Fedora or fedora looks to be a bikeshed. There are probably local business reasons where having caps/lowercase in names is important but in those cases they should put in tools to conform to their local business reason.

So in any case, what I am suggesting is that we make a semi-unique identifier. It is unique enough that you won't get a collision in some 'target' space, but not so unique that it stands out like a black dot on a white shirt. Make the code adjustable somewhere in the process so that if someone wants it off, it can be done and if they need it to be a bigger space it can be done so.

On Thu, 2016-11-10 at 09:58 -0700, stan wrote: > On Thu, 10 Nov 2016 11:21:13 -0500 > Stephen John Smoogen <smooge(a)gmail.com&gt; wrote: > > > So in any case, what I am suggesting is that we make a semi-unique > > identifier. It is unique enough that you won't get a collision in some > > 'target' space, but not so unique that it stands out like a black dot > > on a white shirt. Make the code adjustable somewhere in the process so > > that if someone wants it off, it can be done and if they need it to be > > a bigger space it can be done so. > > Isn't this pretty trivial to create? We put a limit on the number of > machines that are accessible on a local network, say 10 million. Then > we start at > Fedora-1.localhost. > e.g. > 'Fedora-' + str (counter) + '.localhost' > > So if there is only one computer on the local network it is named > Fedora-1.localhost. > > If there is more than one computer on the local network, we check for > collisions with names until we hit the next in numerical order that > isn't taken. > > while name_taken, > counter += 1 > hostname = 'Fedora-' + str (counter) + '.localhost' > name_taken = check_for_collision (hostname) > > This ensures there will be *lots* of collisions on the web, but zero > locally, at least for the first few hosts. > > Or am I missing something? How exactly are you planning to check for collisions with hosts that are shut down or somewhere else (laptops)?

RFC 2606[1] reserves several TLDs that may never be registered for public usage. Out of those, going with Fedora-XXXXXXXX.localhost seems like the best bet.

> RFC 2606[1] reserves several TLDs that may never be registered for > public usage. Out of those, going with > Fedora-XXXXXXXX.localhost > seems like the best bet. The *reason* localhost is a reserved name is to discourage its use in DNS names. Your proposal is the opposite to that intended by RFC2606, something which the casual reader of your message may have missed.

On Thu, Nov 10, 2016 at 10:18:21AM -0500, Stephen John Smoogen wrote: > On 10 November 2016 at 09:27, Stephen Gallagher <sgallagh(a)redhat.com&gt; wrote: > > > >>> On 11/09/2016 07:27 PM, Stephen Gallagher wrote: > > > Here are the items I would like to point out: > > 1. The TLD name should be something that DNS considers a known unknown > name. With the fact that IANA is allowing top level domains of all > sorts we do not want to end up having .fedora or .foobaz end up > causing thousands of computers saying they are in someones domain. So > .invalid .localhost .example .local or .test . I expect that > .localdomain might not ever be registered but who knows. Or better, don't provide any TLD. Plain local hostname is enough for all the purposes mentioned. > 2. The XXXXXX is rather important because of two conflicting items. > One we don't want it to be too short that collisions might occur a > lot, but we don't want it to be too long for readability but also the > less collisions the more likely it can be used to track people. If we > don't care about making breadcrumbs which could be used to 'track' > people we need to be clear about it so that people who are not wanting > that can steer clear. [My 'I am an idiot about randomness' solution > would be uuidgen | sum and that number is used for this. There is a > good chance of uniqueness per small site and non-uniqueness overall. ] I don't think you can have both. If the randomized part is long enough to have rare collisions, it'll certainly be good enough for tracking. If you consider that tracking can combine any external information (like the MAC address or anything else that it learns about the machine), tracking will "win" with many less bits of information. Instead, we should concentrate on not leaking the hostname in places where it shouldn't be leaked, for example on untrusted networks.

> 3. case-sensitivity argument about Fedora or fedora looks to be a > bikeshed. There are probably local business reasons where having > caps/lowercase in names is important but in those cases they should > put in tools to conform to their local business reason. Ack. Zbyszek _______________________________________________ devel mailing list -- devel(a)lists.fedoraproject.org To unsubscribe send an email to devel-leave(a)lists.fedoraproject.org

All lower case, please. Lower case is the default everywhere in Unix, and the hostname also contains an Internet related meaning, where only lower case is used.

On 8.11.2016 22:49, Stephen Gallagher wrote: > For as long as I can recall, Fedora has shipped with a default hostname of > "localhost.localdomain"[1]. This default was "safe" for a very long time because > we also shipped an /etc/hosts entry that routed this hostname to the loopback > device for the benefit of some older system services (like sendmail). One aspect worth considering is that localhost.localdomain as installer default means that if hostname is not set by user (in UI or kickstart), transient hostname of installed system would be automatically set during network configuration (by NM) from dhcp or DNS lookup if available (Formerly anaconda used to set the installed sytem static hostname to hostname obtained from dhcp or DNS in installation environment but based on a bug report we stopped doing it).

For as long as I can recall, Fedora has shipped with a default hostname of "localhost.localdomain"[1]. This default was "safe" for a very long time because we also shipped an /etc/hosts entry that routed this hostname to the loopback device for the benefit of some older system services (like sendmail). However, having the default be the same on all systems introduces other problems, notably with regards to acting as a client to FreeIPA or Active Directory domain controllers. When enrolling with one of these DCs, the machine's current hostname (up to the first dot) is used to uniquely identify the machine into the domain. If the machine's hostname is not unique in that domain, the enrollment will either fail or the machine will take over that name (depending on the server-side implementation). Neither case is likely to be what the user intended. Some information on competing platforms: Windows deals with this on for its systems by assigning all new machines a random hostname of the form WIN-XXXXXXXXXXX (that's a strict count of 11 random characters of either capital letters or decimal numerals after the WIN- prefix). This is because there is a 15-character maximum limit on the machine-name in Active Directory, after which it is simply truncated (which is a bad behavior, but one we have to deal with). Mac OS X and Ubuntu both require the user to pick a machine name at install time explicitly. They do not autogenerate one at all. SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many random characters). My proposal is that we should consider changing the default hostname for Fedora 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a longer random string and therefore lower risk of collision in large environments, while the latter would also provide improved branding for Fedora[2]. Our default BASH shell prompt includes the current machine's hostname. Thoughts on how to generate these random strings are of course up for discussion. Given that initial machine creation may have limited available entropy, we may want to avoid just calling out to /dev/random. Dusty Mabe suggested in on IRC that one option might be to use either the first or last 8/11 characters from /etc/machine-id, since presumably those would be sufficiently random.

For as long as I can recall, Fedora has shipped with a default hostname of "localhost.localdomain"[1]. This default was "safe" for a very long time because we also shipped an /etc/hosts entry that routed this hostname to the loopback device for the benefit of some older system services (like sendmail). However, having the default be the same on all systems introduces other problems, notably with regards to acting as a client to FreeIPA or Active Directory domain controllers. When enrolling with one of these DCs, the machine's current hostname (up to the first dot) is used to uniquely identify the machine into the domain. If the machine's hostname is not unique in that domain, the enrollment will either fail or the machine will take over that name (depending on the server-side implementation). Neither case is likely to be what the user intended. Some information on competing platforms: Windows deals with this on for its systems by assigning all new machines a random hostname of the form WIN-XXXXXXXXXXX (that's a strict count of 11 random characters of either capital letters or decimal numerals after the WIN- prefix). This is because there is a 15-character maximum limit on the machine-name in Active Directory, after which it is simply truncated (which is a bad behavior, but one we have to deal with). Mac OS X and Ubuntu both require the user to pick a machine name at install time explicitly. They do not autogenerate one at all. SUSE generates a random name of the format linux-XXXXXX (I'm not sure how many random characters). My proposal is that we should consider changing the default hostname for Fedora 26 to be either FED-XXXXXXXXXXX or FEDORA-XXXXXXXX. The former allows for a longer random string and therefore lower risk of collision in large environments, while the latter would also provide improved branding for Fedora[2]. Our default BASH shell prompt includes the current machine's hostname. Thoughts on how to generate these random strings are of course up for discussion. Given that initial machine creation may have limited available entropy, we may want to avoid just calling out to /dev/random. Dusty Mabe suggested in on IRC that one option might be to use either the first or last 8/11 characters from /etc/machine-id, since presumably those would be sufficiently random. [1] Unless there is a DHCP-assigned hostname, in which case it will use that. [2] There is an ongoing discussion on the desktop@ list about how to subtly brand the Workstation Edition such that when people are using it or showing it to others, it is clear that it is *Fedora* as opposed to any other GNOME distribution.

On Fri, Nov 11, 2016 at 12:13:48PM -0000, fredrik(a)rambris.com wrote: > I like Fedora-XXXXXXXX for default hostname. If I don't care to set a hostname it would be an ok hostname for my machine. I would however like if the hostname setting would be more prominent in the installer. Possibly generating based on my name along the lines of: fredriks-laptop.rambris.lan Those are two separate issues really: Making the choice it more prominent is probably not necessary, if we provide a nice default. Although it probably wouldn't hurt. The hostname could be displayed in the summary or maybe the user creation dialogue ('Create user "user1@Fedora-123345"'?). Generating the name from the user name matches what Windows does, but it seems like a bigger privacy leak that the randomly generated "Fedora" name. It'd probably be less unique globally, while being more personally identifiable in small environments. This means that it wouldn't solve the freeipa case. So "Fedora-XXXXXX" sounds like a better tradeoff. Zbyszek _______________________________________________ devel mailing list -- devel(a)lists.fedoraproject.org To unsubscribe send an email to devel-leave(a)lists.fedoraproject.org

On 11/13/2016 02:01 PM, Ms Sanchez wrote: > To me, the default hostname should be fedora-xx. There are thousands if not > millions of computers using Fedora so it's quite anonymous. > I don't think copying Windows behaviour is a good idea, they aren't known for > their security.... > Well, in order for our default to be able to function within an Active Directory environment, we do need to stick with the 15-character limit at least.

I am fighting against human unreadable names in hostnames (specifically in datacenters)

and I created a little tool [1] that generates human readable and memorizable names made out of frequently occurring given names and surnames from the 1990 US Census

I can imagine the US names can be confusing,

we can swap these with colors or other words to make it little bit less confusing (e.g. "blue-star").

On 11/15/2016 03:42 PM, Peter Oliver wrote: > I like this idea, but I wonder if the potential for confusion or even offence is too high for it to be workable. I'm thinking ofhttps://en.wikipedia.org/wiki/Sudanese_teddy_bear_blasphemy_case. > > > > we can swap these with colors or other words to make it little bit less confusing (e.g. "blue-star"). > > Seehttps://pypi.python.org/pypi/petname andhttps://www.npmjs.com/package/human-readable-ids, which both use animals. As an alternative, I wrote a program that takes the distribution of trigrams from an English dictionary, and statistically generates a Markov chain of such overlapping trigrams that look almost entirely unlike English words but often are strangely pronounceable, for instance: umirckbysag mpspiarefor doptinenchc lymdeotmicn gclyowdhoki

On 11/15/2016 05:58 PM, Adam Williamson wrote: > On Tue, 2016-11-15 at 17:18 -0500, Przemek Klosowski wrote: >> >> As an alternative, I wrote a program that takes the distribution of >> trigrams from an English dictionary, and statistically generates a >> Markov chain of such overlapping trigrams that look almost entirely >> unlike English words but often are strangely pronounceable, for instance: >> >> umirckbysag mpspiarefor doptinenchc lymdeotmicn gclyowdhoki > I, er, don't find any of those naturally pronounceable at all. Well, I see your point, but we're competing here with qljkvwqrx, lkdsfhkrw, or ad5cb9c940. Remember that the point is to come up with something that could be easily remembered. I would argue that they're not much worse than Acthrel Iprivask Strensiq Eltrombopag Ondansetron VinCRIStine Arixtra Arzerra Ertaczo which are actually from a list of registered drug names that the doctors are supposed to remember. Maybe someone could come up with a suggestion for a better algo---adding just few vowels would fix them up significantly: umirckobysag mopsopiarefor doptinenchoc lymdeotemicyn goclywodhoki BTW, when I looked at the list of drug names I was impressed with the linguistic inventiveness of whoever comes up with this stuff; most of them not only could plausibly be pronounced, but also sounded vaguely 'medical'.