Re: LUKS password gets printed as stars
On Wed, Dec 20, 2017 at 3:18 AM, Jonathan Dowland <j...@debian.org> wrote: > On Wed, Dec 20, 2017 at 12:15:36AM +0530, root kea wrote: >> And I just filed a bug report [0]. if anybody interested they can >> follow the discussion there. >> >> [0] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884788 > > > In this case I think you would have much more luck in at least getting > a discussion of the various merits of each approach, if not a change of > behaviour, by posting to the systemd-devel mailing list[1] Thanks for the suggestion! I just posted about "`systemd-ask-password` echoing stars(*) by default" on systemd-devel ML. [0] I genuinely hope that they change this default behavior. [0] https://lists.freedesktop.org/archives/systemd-devel/2017-December/040023.html -- Avinash Sonawane (rootKea) PICT, Pune https://rootkea.wordpress.com
Re: LUKS password gets printed as stars
On Tue, Dec 19, 2017 at 11:58 PM,wrote: > So you might try to write your own agent, or file a wishlist > bug. I want *default* password agent to be consistent with traditional *Nix password handling. And that is echoing NOTHING at all. I am amazed that at times I had to defend not wanting stars(*) getting echoed on terminal on *Linux* box. That should have been other way around. That is the onus to defend should be on the one who wants stars(*) being echoed on Terminal. Anyways, thank you for helping me out! I learned a thing or two thanks to you! And I just filed a bug report [0]. if anybody interested they can follow the discussion there. [0] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884788 Regards, Avinash Sonawane (rootKea) PICT, Pune https://rootkea.wordpress.com
Re: LUKS password gets printed as stars
On Tue, Dec 19, 2017 at 1:58 AM, <to...@tuxteam.de> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On Tue, Dec 19, 2017 at 12:42:57AM +0530, root kea wrote: >> Now I just need to find out from where this `systemd-ask-password` is >> executed and then edit it's command by omitting the `--echo` flag >> thereby turning off the echo by default. (A sane default!) >> >> Though I'm searching for the `systemd-ask-password` command location; >> any further help would be really appreciated! > in the whereabouts of > /lib/systemd/system/systemd-ask-password-console.service. Thanks for the apt-file tip. I was hoping to find systemd-ask-password command execution in this file so that I could omit `--echo` switch (I'm thinking it's there as user input is echoed by default). But instead systemd-tty-ask-password-agent [0] gets executed from that file which doesn't accept `--echo` as a flag. Here is the full contents of systemd-ask-password-console.service file [1] > Note that the usual way of customizing that is not by changing the > service file in /lib/systemd/... but to put a new service file somewhere > in /etc (/etc/systemd?) overriding it. I can read up more on that and can create a new file but now not so sure what to put there. [0] https://www.freedesktop.org/software/systemd/man/systemd-tty-ask-password-agent.html [1] https://pastebin.com/bSUPTqGt -- Avinash Sonawane (rootKea) PICT, Pune https://rootkea.wordpress.com
Re: LUKS password gets printed as stars
I don't know why but this email didn't get delivered to my mailbox even after I'm being in "To" field. I couldn't even find this email in spam. Thankfully, I decided to check debian-users archives and found this mail there! As I have copy pasted mail by hand please excuse the poor formatting. > On 12/18/17, to...@tuxteam.de <to...@tuxteam.de> wrote: >> On Mon, Dec 18, 2017 at 06:41:00PM +0530, root kea wrote: >> is a screenshot https://imgur.com/bC4AF6H > My crystal ball says you're using systemd. It seems that it has a > special "unit" to mount encrypted file systems [1], which may call > into one of several password agents [2]. If this hunch is correct, > you may start with [2], find out which agent you are talking to > and perhaps reconfigure it in the way you like. OMG! You are absolutely right! I went through the links you provided and ended up on systemd-ask-password [0]. As its manpage says, I tried pressing TAB and voila! echo is turned off! Here is the screenshot with echo off [1] BTW, pressing backspace as a very first char worked too (as mentioned in the same manpage). Now I just need to find out from where this `systemd-ask-password` is executed and then edit it's command by omitting the `--echo` flag thereby turning off the echo by default. (A sane default!) Though I'm searching for the `systemd-ask-password` command location; any further help would be really appreciated! Thanks! [0] https://www.freedesktop.org/software/systemd/man/systemd-ask-password.html [1] https://imgur.com/u4nw6Lb -- Avinash Sonawane (rootKea) PICT, Pune https://rootkea.wordpress.com
LUKS password gets printed as stars
Hello! I am using LUKS on LVM on Debian Stretch. I have encrypted /home and swap partition. When initram gets loaded it asks for password to decrypt swap partition. That passowrd doesn't get printed to screen. No stars. Nothing. But After which Kernel gets loaded (I think) and it asks password for /home which gets printed as stars. I'm really worried about this. Here is a screenshot https://imgur.com/bC4AF6H How do I prevent those stars from getting printed on the screen? PS - while replying please CC me as I'm not subscribed to debian-users. Thank you. Regards, Avinash Sonawane (rootKea) PICT, Pune https://rootkea.wordpress.com