On Wed, May 03, 2006 at 12:24:57AM -0400, Chris Staub wrote: > > Also (the reason why I'm CC'ing LFS-dev) has anyone considered that > something like this should be mentioned in LFS as well? There should be > more emphasis on the "passwd root" command, saying that this is not only > a good idea to provide security (though I guess it could be argued that > anyone who doesn't think they need a password for root shouldn't be > building LFS in the 1st place...) but it also provides a useful test to > make sure that shadow was built and configured correctly, and if it > fails then that is an indication that you will not be able to log on to > your newly-build LFS system.
Pam can be a bear if you aren't careful. I've never heard of shadow locking root out due to a configuration or compilation error, but PAM is well-known for it (though granted it is generally user error). -- Archaic Want control, education, and security from your operating system? Hardened Linux From Scratch http://www.linuxfromscratch.org/hlfs -- http://linuxfromscratch.org/mailman/listinfo/lfs-dev FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
