device-init icon indicating copy to clipboard operation
device-init copied to clipboard

Published 20 hours ago verified publisher icon hypriot

Allow setting password for pirate user.

Open MrJoy opened this issue 8 years ago • 5 comments

Perhaps by giving a pre-hashed value, so one doesn't need to worry about restricting read access to device-init.yml itself.

MrJoy avatar Jun 11 '16 19:06 MrJoy

@MrJoy What do you think about adding a feature that allows to add your ssh public key to device-init.yml. Thus you could access your Pi with strong security while we wouldn't have to worry about restricting access to device-init.yaml...

Govinda-Fichtner avatar Jun 13 '16 04:06 Govinda-Fichtner

By itself that is merely a very useful idea. My objective is less "set password" and more "scramble it so there isn't a default password". Alternatively being able to set some sshd options from device-init.yaml -- such as being able to disallow password-based authentication -- would do the trick as well.

Jon Frisby Sent with Airmail

On June 12, 2016 at 9:23:59 PM, Govinda Fichtner ([email protected]) wrote:

@MrJoy https://github.com/MrJoy What do you think about adding a feature that allows to add your ssh public key to device-init.yml. Thus you could access your Pi with strong security while we wouldn't have to worry about restricting access to device-init.yaml...

— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/hypriot/device-init/issues/22#issuecomment-225486791, or mute the thread https://github.com/notifications/unsubscribe/AAG72RoeihznTvu7qE8XadB2ftp3Jiveks5qLNtfgaJpZM4Izn3K .

MrJoy avatar Jun 13 '16 15:06 MrJoy

Well, also to avoid the initial setup... @MrJoy or @Govinda-Fichtner , do you guys know what's the default password anyway?

$ ssh [email protected]
The authenticity of host 'pi1.local (192.168.1.65)' can't be established.
ECDSA key fingerprint is SHA256:v7gmJb1H2D/Reh+BaOtM/9eXUa6Ae9K2wSxgr2XifNU.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'pi1.local,192.168.1.65' (ECDSA) to the list of known hosts.
[email protected]'s password:
Permission denied, please try again.

marcellodesales avatar Sep 24 '16 05:09 marcellodesales

@marcellodesales See the default credentials in our FAQ: http://blog.hypriot.com/faq/#default-credentials:4a1318da06786ac52626178ca960109e

MathiasRenner avatar Sep 24 '16 06:09 MathiasRenner

@MathiasRenner Thank you! Yeah I was rushing to get stuff done and did not find the docs... Thanks!

marcellodesales avatar Sep 26 '16 23:09 marcellodesales