Hi Janneke,
On Mon Mar 2, 2026 at 11:23 AM CET, Janneke Nieuwenhuizen wrote:
> Tanguy Le Carrour writes:
>> but then I’m asked for root’s password?!
>> Is this supposed to happen? 🤔
>
> Probably -- so, childhurd's are set-up for maintenance-free offloading,
> so possibly you can log into the `offloading' account by doing something
> like
>
> # ssh -i /etc/childhurd/etc/ssh/offloading offloading@localhost -p 10022
>
Mmm… on my system, the path to the key is
`/etc/childhurd/etc/ssh/authorized_keys.d/offloading`,
but it ends up with an error anyway! 😱
```
$ ssh -i /etc/childhurd/etc/ssh/authorized_keys.d/offloading
offloading@localhost -p 10022
Load key "/etc/childhurd/etc/ssh/authorized_keys.d/offloading": error in
libcrypto
offloading@localhost's password:
```
> ...but the proper thing to do is to override the openssh-service; I have
>
> --8<---------------cut here---------------start------------->8---
> (services
> (modify-services (operating-system-user-services
> %hurd-vm-operating-system)
> (openssh-service-type
> config =>
> (openssh-configuration
> (inherit config)
> (authorized-keys `(("janneke"
> ,(local-file "../../keys/janneke.pub"))))))))
> --8<---------------cut here---------------end--------------->8---
>
> or otherwise using the `bare-hurd.tmpl' for inspiration. Wondering how
> to best add this information to the blog post. We had such a nice
> couple of one-liners before the (kernel-arguments '("noide"))
> requirement also came up.
Yeah, I did just that (+ user account declaration) in the meantime.
But it’s a lot more boilerplate, indeed.
--
Tanguy
