4ba7dfde5b
A null password allows logging into local PAM services such as "login" (agetty) and KDM. That's not actually a security problem for EC2 machines, since they do not have "local" logins; for VirtualBox machines, if you local access, you can do anything anyway. But it's better to be on the safe side and disable password-based logins for root. |
||
---|---|---|
.. | ||
fonts | ||
gnu.nix | ||
i18n.nix | ||
krb5.nix | ||
ldap.nix | ||
networking.nix | ||
no-x-libs.nix | ||
nsswitch.nix | ||
power-management.nix | ||
pulseaudio.nix | ||
shells-environment.nix | ||
swap.nix | ||
sysctl.nix | ||
system-path.nix | ||
timezone.nix | ||
unix-odbc-drivers.nix | ||
users-groups.nix |