Do not allow to login as root in Dom0

Anaconda apparently uses en empty password by default for root user -- this allows for trivial bypass of the screenlocker in Dom0 -- just switch to a text console and log in as root with empty password. So, we tell anaconda to lock this root account.
2011-04-06 13:09:17 +02:00 · 2011-04-06 13:09:17 +02:00 · 46578f3f7d
commit 46578f3f7d
parent d26b05710f
1 changed files with 1 additions and 1 deletions
--- a/anaconda/users.py
+++ b/anaconda/users.py
@ -96,7 +96,7 @@ class Users:
    def __init__ (self, anaconda):
        self.anaconda = anaconda
        self.admin = libuser.admin()
-        self.rootPassword = { "isCrypted": False, "password": "", "lock": False }
+        self.rootPassword = { "isCrypted": False, "password": "", "lock": True }

    def createGroup (self, name=None, gid=None, root="/mnt/sysimage"):
        childpid = os.fork()