Heads up - Anaconda 22.17 will enforce 'good' passwords
Bruno Wolff III
bruno at wolff.to
Wed Jan 28 22:54:29 UTC 2015
On Wed, Jan 28, 2015 at 22:20:54 +0000,
Andre Robatino <robatino at fedoraproject.org> wrote:
>down, they could forget it after the install, and be locked out. I was also
>wondering about ways to get around the password - for example if the disk
>isn't encrypted, or there's no bootloader password. Wouldn't anaconda need
>to enforce some of that as well, to be consistent?
That depends on the threat model they are attemping to defend against. It
may be that attacks requiring physical access are out of scope for their
model.
More information about the test
mailing list