set root password blank?

[mike_c]

how can i set roots password to be blank

everytime i try i get that annoying "password is WAY to short" message

i know this is insecure, but i dont really care

thanks

Mike

[Pithlit]

Not only it's insecure but it's incredibly stupid... I think your system is trying to save you from yourself...

[mike_c]

why is it stupid?

This is for a box that doesnt don't run sshd or other external login inservices.

And I don't think anyone i live with has an interest in screwing aroung on my computer

[Pithlit]

They don't need to be screwing with it. Someone could just sit on the keyboard and by some weird coincidence delete everything. If someone would intend to screw with your comp (with physical access) no root pass would save you anyway.

[mike_c]

oh well

the probabllity of that happening is not worth having to type a password all the time

i found what i needed in the passwd manpage anyway

if anyone else is interested in it, try this

[Ateo]

There's a time and a place for a passwordless root account. A perfect example is a test environment of any kind. Just because you don't understand the reason's is no reason to assume it's stupid.

[loki99]

[Pithlit]

I'm perfectly aware of that Ateo. But if you need a passwordless root account for testing reasons I assume you know how to get one.

And "just because I'm to lazy to type a password everytime I need root access" isn't what I'd call a good reason. I may be wrong tho. And no offense to anyone. I'm just assuming without any facts (altho I've seen this type of reasons).

I still say it's stupid.

[mike_c]

i said i dont care in the slighest bit about the security of my system in my first post

bearing that in mind, i dont see how its stupid

i dont deny that its lazy

[kimchi_sg]

[Coz]

I think is stupid because I have been rooted before XD It's not a nice experience to have to reinstall your system coz you left a root terminal unused :p

You know, maybe people aren't targeting at YOU they just want to get into someone's machine. I remember some distro that had empty root password by default but I don't remember which.

All the security stuff could sound like crap if you have nothing to hide, but remember that all the time you spent tweaking your system, installing and emerging will go to waste if you get rooted.

The only way I would ever try to do that is if my computer was never going to be connected to the internet and that I have that computer for my personal use, and if I have a much better computer that everybody will want to use, so they don't mess with that one. And I bet that still that way I would have a root pass, at least 'a' XD
_________________
Ask smart questions and follow the guidelines to get your post answered|Answer a unanswered post!

[kimchi_sg]

[pjp]

Lets stop the debate about root not having a password. The user explained they were aware of its security risks.


Moved from Installing Gentoo.
_________________
Quis separabit? Quo animo?

[Raffi]

Stupid or not (and I do think it is stupid). You can simply edit the /etc/shadow file and remove everything between the first two :s. Some applications may still not let you login.

[aspenhydrowave]

[mike_c]

I still dont understand how its insecure

If I am not running any external login service, how can anyone take advantage of a lack of root password?

Mike

[Pithlit]

You may argue this is a very unlikely scenario but hey... you wondered...

Get online, get hit by a simple virus that does # rm -rf , cry your heart out.

The only box that has a chance of not having a root password in my home would be
1 - a test box (connected to the net),
2 - a honeypot of some sort
3 - a box that is never, ever gonna get a net access

That said I'd prolly still put root passes on them. Simple ones like 'root' or 'pass'. Sides... it's not like I need root access every day. But hey, it's your box. You can do what you want with it. In fact... anyone with access to it (even through malicious html code) can do what they want with it. ...And I'm doing what I shouldn't be doing - ranting. If you think you're safe by doing this then by all means go for it. Most of us (who say it's insecure and stupid) just wanna make sure you know the possible consequences.