On Mon, Jun 23, 2025 at 02:56:00PM +0100, Andrew Cooper wrote: > On 23/06/2025 2:46 pm, Marek Marczykowski-Górecki wrote: > > For this add also bridge package, so xenbr0 can be configured with > > /etc/network/interfaces. > > This allows extracting more logs out of the test system. > > > > Signed-off-by: Marek Marczykowski-Górecki <marma...@invisiblethingslab.com> > > --- > > This enables passwordless root login. It's okay for qubes runners, as > > they are isolated (even from each other). Is that okay in other places > > too? > > It's potentially a problem on a corporate network. > > Can't we have each job generate a random password an insert it via the > dom0-rootfs overlay? > > Or alternatively have the runner drop a public key in > /root/.ssh/authorised_keys ?
That can work, yes. And is preferred to a password, as easier to do non-interactively. -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab
signature.asc
Description: PGP signature
