On 11/25/19 1:25 PM, Ben Cotton wrote:
== Benefit to Fedora == Changes in described components (Step 1 - Step 4) are necessary to implement in order to make sure that user accounts and tools works correctly when authentication with empty password is disabled by system administrator. Changing system default to disallow authentication with empty passwords (Step 5) improves system hardening.
Steps 1 - 4 are not benefits, they are workarounds to critical system utilities required by this change. I don't understand why this change is necessary at all. It only affects local logins and if someone wants to have an empty password, why make it so difficult? It's their choice. It's not like Fedora has any default logins with empty passwords, the user has to make their own.
_______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
