On Tue, Nov 26, 2019 at 9:45 am, Dominique Martinet
<dominique.martinet@xxxxxx> wrote:
They just expected no root password = no login possible, but it turns
out 'su' just gave out a root shell with no password entered...
It depends on whether the account is locked or not. In Workstation we
default to locked passwordless root, equivalent to:
# passwd -d root
# passwd -l root
which is what your association really wanted to do with their VMs: no
root password, and cannot log in as root. They forgot the 'passwd -l',
without which you're able to log in as root with no password. ('passwd
-d' removes the password and unlocks the account; 'passwd -l' locks it.)
Michael
_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
