From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp2 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id +JK5AUHhJGACMgAA0tVLHw (envelope-from ) for ; Thu, 11 Feb 2021 07:48:17 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp2 with LMTPS id oH3lOEDhJGBnYAAAB5/wlQ (envelope-from ) for ; Thu, 11 Feb 2021 07:48:16 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 818FE94029C for ; Thu, 11 Feb 2021 07:48:15 +0000 (UTC) Received: from localhost ([::1]:56142 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1lA6hx-0005Cq-5O for larch@yhetil.org; Thu, 11 Feb 2021 02:48:13 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]:55384) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1lA6hm-0005Ch-9d for bug-guix@gnu.org; Thu, 11 Feb 2021 02:48:02 -0500 Received: from debbugs.gnu.org ([209.51.188.43]:46097) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1lA6hm-0002WA-2K for bug-guix@gnu.org; Thu, 11 Feb 2021 02:48:02 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1lA6hl-0001Xq-Ul for bug-guix@gnu.org; Thu, 11 Feb 2021 02:48:01 -0500 X-Loop: help-debbugs@gnu.org Subject: bug#44808: Default to allowing password authentication on leaves users vulnerable References: <878sat3rnn.fsf@dustycloud.org> In-Reply-To: <878sat3rnn.fsf@dustycloud.org> Resent-From: raid5atemyhomework Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Thu, 11 Feb 2021 07:48:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 44808 X-GNU-PR-Package: guix X-GNU-PR-Keywords: security To: "44808@debbugs.gnu.org" <44808@debbugs.gnu.org> Received: via spool by 44808-submit@debbugs.gnu.org id=B44808.16130296285879 (code B ref 44808); Thu, 11 Feb 2021 07:48:01 +0000 Received: (at 44808) by debbugs.gnu.org; 11 Feb 2021 07:47:08 +0000 Received: from localhost ([127.0.0.1]:57643 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lA6gu-0001Wl-2Y for submit@debbugs.gnu.org; Thu, 11 Feb 2021 02:47:08 -0500 Received: from mail-40132.protonmail.ch ([185.70.40.132]:11370) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lA6gr-0001WD-48 for 44808@debbugs.gnu.org; Thu, 11 Feb 2021 02:47:06 -0500 Date: Thu, 11 Feb 2021 07:46:51 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=protonmail; t=1613029618; bh=kC6ufWjXNKXgrRlBFS5fhmcviLa8FZ/wJFIps/jOZbI=; h=Date:To:From:Reply-To:Subject:From; b=qjXytzPjL0rkEnm8tjA+n7Z6fMhgDHZVSAGqkHBH2SG15CEkLsz6aFnx+nRrQU43V GEBz3LPRRz5GxkagR5A7ZKX+qgusZrr9kvVj6VVeCeIRX8/Um8Cw5vGlb2P+h3sTE5 V4Ph9LKi0sPUHwK6ZI1YKY3mduL0Lt1dmWa3gpxI= Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: "bug-Guix" Reply-to: raid5atemyhomework X-ACL-Warn: , raid5atemyhomework From: raid5atemyhomework via Bug reports for GNU Guix X-Migadu-Flow: FLOW_IN X-Migadu-Spam-Score: -1.36 Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=protonmail.com header.s=protonmail header.b=qjXytzPj; dmarc=pass (policy=none) header.from=gnu.org; spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org X-Migadu-Queue-Id: 818FE94029C X-Spam-Score: -1.36 X-Migadu-Scanner: scn1.migadu.com X-TUID: 96UtIHfR7rel Hi guix users, It strikes me that a better course of action here would be, rather than pro= viding a warning that might not be noticed by the user, to remove the defau= lt and force people to explicitly put `password-authentication? #t` or `pas= sword-authentication? #f`. That way if I have set up a headless server (possibly having a temporary ke= yboard/mouse/monitor during initial install, then forever logging in afterw= ards over intranet using my super secret password "raid5isnotagooddog"), wi= th an existing `configuration.scm` that does not explicitly give the settin= g, I cannot accidentally lose access to my headless server by doing a rando= m `guix pull && sudo guix system reconfigure configuration.scm` without not= icing the warning. Especially since there exists an `unattended-upgrades-service-type` which a= utomates this `guix pull && sudo guix system reconfigure configuration.scm`= , which makes changing this default ***VERY DANGEROUS*** in this use-case. = I'd rather I noticeably error out in this case. Then later after a year give a "sane" default, after people who have depend= ed on the existing `password-authentication? #t` have already explicitly p= ut the setting in their `configuration.scm`. Thanks raid5atemyhomework