Code review comment for lp:~vorlon/debian-cd/lp.1576353

I don't disagree with most of xnox's points, except that I'll note there's a huge chicken-and-egg issue for anyone who doesn't have either an LP/git/whatever-we-integrate-with account to import an SSH ID from or an active internet connection (one of the more obvious use-cases for installing from an ISO in the first place).

If the only way to get a key on the system is to type it in by hand (lolz) or SSH in to the system post-install, it's a wonderful pain to discover you can't. Doubly-so if it was a headless system installed in a co-lo or something (note: not at all uncommon for co-lo providers to offer iLO booting of various distro ISOs to install machines).

With a critical prio debconf question (and equivalent machinery for subiquity) yelling about password auth and driving home the fact that, without it, you might be locked out of your new server and have to start all over again, I think I'd be okay with no-passwd-auth being the default everywhere. Maybe.