Re: LUKS password gets printed as stars

2017-12-20 Thread root kea 
On Wed, Dec 20, 2017 at 3:18 AM, Jonathan Dowland <j...@debian.org> wrote:
> On Wed, Dec 20, 2017 at 12:15:36AM +0530, root kea wrote:

>> And I just filed a bug report [0]. if anybody interested they can
>> follow the discussion there.
>>
>> [0] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884788
>
>
> In this case I think you would have much more luck in at least getting
> a discussion of the various merits of each approach, if not a change of
> behaviour, by posting to the systemd-devel mailing list[1]

Thanks for the suggestion! I just posted about "`systemd-ask-password`
echoing stars(*) by default" on systemd-devel ML. [0]

I genuinely hope that they change this default behavior.

[0] 
https://lists.freedesktop.org/archives/systemd-devel/2017-December/040023.html
-- 
Avinash Sonawane (rootKea)
PICT, Pune
https://rootkea.wordpress.com

Re: LUKS password gets printed as stars

2017-12-19 Thread root kea 
On Tue, Dec 19, 2017 at 11:58 PM,   wrote:

> So you might try to write your own agent, or file a wishlist
> bug.

I want *default* password agent to be consistent with traditional *Nix
password handling. And that is echoing NOTHING at all.

I am amazed that at times I had to defend not wanting stars(*) getting
echoed on terminal on *Linux* box. That should have been other way
around. That is the onus to defend should be on the one who wants
stars(*) being echoed on Terminal.

Anyways, thank you for helping me out! I learned a thing or two thanks to you!

And I just filed a bug report [0]. if anybody interested they can
follow the discussion there.

[0] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884788

Regards,
Avinash Sonawane (rootKea)
PICT, Pune
https://rootkea.wordpress.com

Re: LUKS password gets printed as stars

2017-12-19 Thread root kea 
On Tue, Dec 19, 2017 at 1:58 AM,  <to...@tuxteam.de> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Tue, Dec 19, 2017 at 12:42:57AM +0530, root kea wrote:

>> Now I just need to find out from where this `systemd-ask-password` is
>> executed and then edit it's command by omitting the `--echo` flag
>> thereby turning off the echo by default. (A sane default!)
>>
>> Though I'm searching for the `systemd-ask-password` command location;
>> any further help would be really appreciated!

> in the whereabouts of 
> /lib/systemd/system/systemd-ask-password-console.service.

Thanks for the apt-file tip. I was hoping to find systemd-ask-password
command execution in this file so that I could omit `--echo` switch
(I'm thinking it's there as user input is echoed by default).

But instead systemd-tty-ask-password-agent [0] gets executed from that
file which doesn't accept `--echo` as a flag. Here is the full
contents of systemd-ask-password-console.service file [1]

> Note that the usual way of customizing that is not by changing the
> service file in /lib/systemd/... but to put a new service file somewhere
> in /etc (/etc/systemd?) overriding it.

I can read up more on that and can create a new file but now not so
sure what to put there.

[0] 
https://www.freedesktop.org/software/systemd/man/systemd-tty-ask-password-agent.html
[1] https://pastebin.com/bSUPTqGt
-- 
Avinash Sonawane (rootKea)
PICT, Pune
https://rootkea.wordpress.com

Re: LUKS password gets printed as stars

2017-12-18 Thread root kea 
I don't know why but this email didn't get delivered to my mailbox
even after I'm being in "To" field. I couldn't even find this email in
spam. Thankfully, I decided to check debian-users archives and found
this mail there!

As I have copy pasted mail by hand please excuse the poor formatting.

> On 12/18/17, to...@tuxteam.de <to...@tuxteam.de> wrote:
>> On Mon, Dec 18, 2017 at 06:41:00PM +0530, root kea wrote:

>> is a screenshot https://imgur.com/bC4AF6H

> My crystal ball says you're using systemd. It seems that it has a
> special "unit" to mount encrypted file systems [1], which may call
> into one of several password agents [2]. If this hunch is correct,
> you may start with [2], find out which agent you are talking to
> and perhaps reconfigure it in the way you like.

OMG! You are absolutely right! I went through the links you provided
and ended up on systemd-ask-password [0]. As its manpage says, I tried
pressing TAB and voila! echo is turned off! Here is the screenshot
with echo off [1]

BTW, pressing backspace as a very first char worked too (as mentioned
in the same manpage).

Now I just need to find out from where this `systemd-ask-password` is
executed and then edit it's command by omitting the `--echo` flag
thereby turning off the echo by default. (A sane default!)

Though I'm searching for the `systemd-ask-password` command location;
any further help would be really appreciated!

Thanks!

[0] https://www.freedesktop.org/software/systemd/man/systemd-ask-password.html
[1] https://imgur.com/u4nw6Lb
-- 
Avinash Sonawane (rootKea)
PICT, Pune
https://rootkea.wordpress.com

LUKS password gets printed as stars

2017-12-18 Thread root kea 
Hello!

I am using LUKS on LVM on Debian Stretch. I have encrypted /home and
swap partition. When initram gets loaded it asks for password to
decrypt swap partition. That passowrd doesn't get printed to screen.
No stars. Nothing.

But After which Kernel gets loaded (I think) and it asks password for
/home which gets printed as stars. I'm really worried about this. Here
is a screenshot https://imgur.com/bC4AF6H

How do I prevent those stars from getting printed on the screen?

PS - while replying please CC me as I'm not subscribed to debian-users.

Thank you.

Regards,
Avinash Sonawane (rootKea)
PICT, Pune
https://rootkea.wordpress.com