Quoting Frans Pop (elen...@planet.nl): > Systems are vulnerable anyway when people have physical access to them. > That they are a bit more vulnerable during installation is almost > unavoidable, but in most cases the window (time from start of install to > reboot) is quite short. > > I don't think this is something we should worry too much about.
I share that feeling, indeed. Even if the console password had been in clear text in the debconf databases *of the installer system*, I don't thinnk that would have been a big concern.
signature.asc
Description: Digital signature
