This fix breaks logging into our OpenVZ and Linux-VServer virtual machines created from debootstrapped templates. The routine by which you check whether the root login should be disabled is wrong:
if printf '!\0' | unix_chkpwd root nullok ; then
echo 'root:!' | chpasswd -e
fi
This should become:
if printf '!\0' | unix_chkpwd root nonull ; then
echo 'root:!' | chpasswd -e
fi
This bug will affect everybody who has "*" as their root password, hence not using password, hence probably exclusively using SSH keys or something such. This should have been tested better before releasing a package that will lock many people out of their template-created machines (virtual or not).
This fix breaks logging into our OpenVZ and Linux-VServer virtual machines created from debootstrapped templates. The routine by which you check whether the root login should be disabled is wrong:
if printf '!\0' | unix_chkpwd root nullok ; then
echo 'root:!' | chpasswd -e
fi
This should become:
if printf '!\0' | unix_chkpwd root nonull ; then
echo 'root:!' | chpasswd -e
fi
This bug will affect everybody who has "*" as their root password, hence not using password, hence probably exclusively using SSH keys or something such. This should have been tested better before releasing a package that will lock many people out of their template-created machines (virtual or not).