initrd-shell should not use /root/.ssh/authorized_keys

random-archer / mkinitcpio-systemd-tool

Provisioning tool for systemd in initramfs (systemd-tool)

https://www.archlinux.org/packages/community/any/mkinitcpio-systemd-tool/

Other

112 stars 27 forks source link

initrd-shell should not use /root/.ssh/authorized_keys #103

Closed kescherCode closed 11 months ago

kescherCode commented 1 year ago

The list of devices that are supposed to be able to unlock a system is not neccessarily overlapping with the list of keys that should allowed to access the normal root user.

Proposal: Take the file from /etc/mkinitcpio-systemd-tool/config/authorized_keys instead.

ArchangeGabriel commented 1 year ago

(OTOH, no key should allow access to the normal root user — but I’m fine with a dedicated setting)