Open aWeinzierl opened 1 year ago
README.md says:
README.md
FIRST_USER_PASS (Default: unset) Password for the first user. If unset, the account is locked.
FIRST_USER_PASS (Default: unset)
FIRST_USER_PASS
Password for the first user. If unset, the account is locked.
However, when I enable DISABLE_FIRST_BOOT_USER_RENAME while not setting FIRST_USER_PASS, it says:
DISABLE_FIRST_BOOT_USER_RENAME
Not setting FIRST_USER_PASS makes your system vulnerable and open to cyberattacks
This doesn't make any sense to me, since disabling login via password (which is what locking the account actually seems to mean in the context of this project - however even if the account would actually be locked, I don't see any vulnerability) should only increase the security of the system.
Proposal:
build.sh
README.mdsays:However, when I enable
DISABLE_FIRST_BOOT_USER_RENAMEwhile not settingFIRST_USER_PASS, it says:This doesn't make any sense to me, since disabling login via password (which is what locking the account actually seems to mean in the context of this project - however even if the account would actually be locked, I don't see any vulnerability) should only increase the security of the system.
Proposal:
README.mdto accurately describe what happensbuild.shto mention the actual reason for requiring a password