XPost: linux.debian.maint.boot

Package: debian-installer

I just did an installation with the 2024-02-24
debian-testing-amd64-netinst.iso image. I forget the exact wording
used, but when setting up a user, d-i printed advice that user passwords
should be changed frequently. This is no longer current good advice
(since 2017):

"Verifiers SHOULD NOT require memorized secrets to be changed arbitrarily
(e.g., periodically). However, verifiers SHALL force a change if there
is evidence of compromise of the authenticator."

https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63b.pdf

I happen to like their suggestion of providing a password-strength meter,
but that would be a separate bug. This bug is simply a request to remove
this outdated suggestion text from d-i.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

On 25/02/2024 at 01:17, Matthew Wilcox wrote:

I just did an installation with the 2024-02-24 debian-testing-amd64-netinst.iso image. I forget the exact wording
used, but when setting up a user, d-i printed advice that user passwords should be changed frequently. This is no longer current good advice
(since 2017):

This topic has some history, see <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656509> <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868869> <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=998408> <https://salsa.debian.org/installer-team/user-setup/-/merge_requests/7>

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Pascal Hambourg <pascal@plouf.fr.eu.org> writes:

On 25/02/2024 at 01:17, Matthew Wilcox wrote:

I just did an installation with the 2024-02-24
debian-testing-amd64-netinst.iso image. I forget the exact wording
used, but when setting up a user, d-i printed advice that user passwords
should be changed frequently. This is no longer current good advice
(since 2017):

This topic has some history, see <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656509> <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868869> <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=998408> <https://salsa.debian.org/installer-team/user-setup/-/merge_requests/7>

It had not occured to me until Matthew's suggestion that we might simply
remove the obsolete advice, rather than trying to improve the wording.

In light of that, I've split the MR into 2 commits, the first of which
removes the old advice (which hopefully inflicts the smallest possible
load on our translators) and the second of which is an attempt to come
up with something better (criticism welcome, I've had multiple attempts
at this, so I imagine there's still room for improvement).

Depending upon whether we think it's worth using translators' time on
this subject, we can then select one or both commits, and finally close
these bugs.

You can see my latest attempt here:

https://openqa.debian.net/tests/238094#step/passwords/1

in which I'm recommending setting no password for root, which then gives
the initial user 'sudo' membership[1].

The slightly awkward thing about this recommendation is that it
encourages people to put themselves in the situation that:

https://salsa.debian.org/installer-team/user-setup/-/merge_requests/6

is trying to address, so if we make this recommendation, we should also
deal with that issue (which I think we should do anyway).

Cheers, Phil.

[1] This strikes me as decent advice for newbies, for whom this sort of
guidance is most necessary. The problem with asking a newbie for a
root password is that they're likely to choose a poor one. Even if
they later realise that they should have choosen better passwords,
they may well not at that point remember that they still have a
useless password for root that needs updating.

On the other hand, now that ssh defaults to not allowing password
based logins to root, perhaps the potential presence of a poor
password on a sudo enabled account should be of greater concern,
since that will still be open to remote logins, so I can see that
one could argue this either way.
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXg4KYACgkQ0EujoAEl 1cDinhAAn5p2+rw5Y6Rs9s0nar36htHq8zEX+UOkdw/Z3kxV2ZRnB7Vdrb93V/UR KUI4fpeOTV/nJwB+9rLSebiDkXNA2yqrq961tG+kUIdnUVDcS4ozhz3iU9OnyaIJ HnRnhDXD5P6nca1ZDKqytkYsVMXHU/Jm41HxfQtSwr9XxhkUKUlu4NK7bYi2F4T/ Zp1A3SZOmzD0MBloUQKHCzlLUadpd+IfIr+i6sitKehXiZVoRv+0G8FpQpSSlyJb 16zXPro9g5YFx2TdpVOnXgnjzBh+6+EdPiX0Ul1ud2fiuvvjcXs786L+kkTm8G5i NLS0yMILFO31Msmlzw3fzKuoWrl2UQ/E/26dxsjvEbf9R42cVzDfNTJP1oCgwlTH hrt1STA7emfoCuWgTYJJ7fDDxqrrXce94ji3iKYlxRYY7ebkOYVMhckUXFLHbag/ LKRfM/BxDeynudNqYdEwfUG75uN2hMoe65wSzhBn9Ob4KYME3Bi+UdVNXcdwKG1l MxKi/sT25FDZs9EXE+V2J289WTKRzpUorOz9HJYam4c3Q5PJxFGkL6SI42KCjsRw v2f5CpQN+2fNZWDK+SWpbywwjtrNyv/wyPi8TEBDwBqBWYOi4UH4i+23qC2kkQzr gimrSuQiDYGkGRNROYIe/7OFq1ZX1PErtDEiBthkvnHiYc9YysA=un9w
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

Hi,

Philip Hands <phil@hands.com> wrote (Thu, 29 Feb 2024 20:53:10 +0100):

Depending upon whether we think it's worth using translators' time on
this subject, we can then select one or both commits, and finally close
these bugs.

I think it would be worth it to generate some work for translators here, yes.

You can see my latest attempt here:

https://openqa.debian.net/tests/238094#step/passwords/1

in which I'm recommending setting no password for root, which then gives
the initial user 'sudo' membership[1].

What about the "Allow login as root?" question (only shown in expert mode), which is asked directly before the above mentioned dialog?
(That's in user-setup-udeb.templates - line 25 ff.)

Maybe that needs some re-wording too?

Seems somewhat inconsistent now IMO:
if you say 'Yes' to 'Allow login as root' you get the next dialog allowing
the same choice again (or at least very similar):
'It is possible [...] to lock the root acount ... If you leave the password here unset, then this is what happens.'

Is that understandable for users?


Holger


--
Holger Wansing <hwansing@mailbox.org>
PGP-Fingerprint: 496A C6E8 1442 4B34 8508 3529 59F1 87CA 156E B076

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

On Thursday, 29 February 2024 23:13:55 CET Holger Wansing wrote:

in which I'm recommending setting no password for root, which then gives the initial user 'sudo' membership[1].

What about the "Allow login as root?" question (only shown in expert mode), which is asked directly before the above mentioned dialog?

I very much support the suggestion from the (initial) bug report:
removing bad advice

But this is changing the subject in fundamental ways, which should be
discussed in a separate bug report with an appropriate title.

1) Suddenly we assume that the user is incapable of coming up with a good password for root? Where is that based upon?
2) If they're incapable of coming up with a good password for root, then they're incapable of given their normal account, with sudo privileges, a
decent password too, right?
3) Default behavior now becomes *not* creating a root account? If we divert from a years/decades long default, there needs to be good reasons for it IMO.

Defaults matter and I'm not happy that so much things get put into expert mode or (only) made available via preseed, just because we're worried it may
confuse users (or we think they're idiots, which is way worse).

"This 'users are idiots, and are confused by functionality' mentality of Gnome is a disease. If you think your users are idiots, only idiots will use it."

My 0.02
-----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZeET1AAKCRDXblvOeH7b bmcdAQC6MRSnkpelZWOcCxnJ8zMYvOf0Kc3ONsaTAneKRx9AwgEAoiiy7RtdJId2 7KEp2SUJ9YP/yYs2YFKOLsBRPnCt3Q4=
=ofRy
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Hi Diederik,

You're probably right that it deserves a separate bug, but I was trying
to avoid wasting the translators time by doing this in two steps, and
forcing them to do the work twice.

I cannot say that I have read the stuff in these dialogs (except when
editing them) for at least 20 years, so tailoring the content of them
for people like me seems like a mistake. I was therefore trying to put
myself in the position of a person that's reading them for the first
time, and perhaps a person that's installing Linux for the first time.

Having helped people to install Linux for ~30 years, I'd say that it's
the norm for people to be almost incapable of coming up with a decent
password if they were not expecting the question.

As I said, I'm happy to hear better suggestions, since I've had about 15 attempts at this so far, and every time I see the text rendered in the
D-I screenshot, I end up not liking the result very much.

If you want to make a constructive contribution, how about suggesting a
wording that reflects the advice that you think would be most useful to
the people that actually read the advice?

If nothing like a consensus is available, then just removing the old
advice seems like an OK place to end up too, which is why I went to the
effort of splitting the commits.

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot
To: phil@hands.com (Philip Hands)

Hi Philip,

On Friday, 1 March 2024 06:46:27 CET Philip Hands wrote:

Having helped people to install Linux for ~30 years, I'd say that it's
the norm for people to be almost incapable of coming up with a decent password if they were not expecting the question.

I fully agree that most people use terrible passwords, due to decades of terrible advise about 'good' passwords:

https://milliways.social/@mcfly/111187875394339616
https://xkcd.com/936/

On an *old* screenshot I had from d-i I found this:
"A good password will contain a mixture of letters, numbers and punctuation"

Fortunately that seems to have already been fixed :)

I'll note that not every system needs strong security; some of my VMs have a terrible *root* password and that is/was deliberate.

If you want to make a constructive contribution, how about suggesting a wording that reflects the advice that you think would be most useful to
the people that actually read the advice?

It makes me sad if we assume that people won't even read it :(
People not reading a 50+ page EULA, I can understand that. But a few lines of instruction/help when installing a fresh Operating System should not be too much to ask? Or am I completely out of touch with reality?

From MR 7:

It is possible (and generally recommended) to lock the 'root' (system administrative) account, thus preventing direct password-based logins to 'root'.

I wasn't aware that that's now the recommended way to do things.
An important reason why I responded was that I recently had to nuke a system with a locked root account because I couldn't get into emergency mode to fix a (rather simple) mistake. Due to this bug I found #802211 which seems to indicate it would've been possible (if setup in advance?). Had I known it.

And apparently I'm the only one who's bothered by removing the root account screen, so go ahead. I'll find a way around it for myself.

Cheers,
Diederik
-----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZeHpYgAKCRDXblvOeH7b bsIkAQC02Hc7Mze+rHMSSof8GE+q2Qliuawd2E13Dg8rcE+PpQD9EJYsvO7G1Gv0 bcBFQo6MB+zJHldqzHBacX5iE5n7TQc=
=ZrIy
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

This is a multi-part message in MIME format.

Hi,

Philip Hands <phil@hands.com> wrote (Fri, 01 Mar 2024 06:46:27 +0100):

If you want to make a constructive contribution, how about suggesting a wording that reflects the advice that you think would be most useful to
the people that actually read the advice?

I would like to make a proposal, leaving the default setting as is
(aka: default to an enabled root account, no sudo), with only some wording changings.

Patch attached.

What do you think?


Holger


--
Holger Wansing <hwansing@mailbox.org>
PGP-Fingerprint: 496A C6E8 1442 4B34 8508 3529 59F1 87CA 156E B076

diff --git a/debian/user-setup-udeb.templates b/debian/user-setup-udeb.templates
index cdb6d78..2715cfb 100644
--- a/debian/user-setup-udeb.templates
+++ b/debian/user-setup-udeb.templates
@@ -32,28 +32,26 @@ _Description: Allow login as root?

Template: passwd/root-password
Type: password
# :sl1:
_Description: Root password:
You need to set a password for 'root', the system administrative
account. A malicious or unqualified user with root access can have
disastrous results, so you should take care to choose a root password
- that is not easy to guess. It should not be a word found in dictionaries,
+ that cannot be guessed. It should not be a word found in dictionaries,
or a word that could be easily associated with you.
.
- A good password will contain a mixture of letters, numbers and punctuation
- and should be changed at regular intervals.
- .
The root user should not have an empty password. If you leave this
empty, the root account will be disabled and the system's initial user
account will be given the power to become root using the "sudo"
command.
.
- Note that you

XPost: linux.debian.maint.boot

Hi,

On Friday, 1 March 2024 20:46:49 CET Holger Wansing wrote:

Philip Hands <phil@hands.com> wrote (Fri, 01 Mar 2024 06:46:27 +0100):

If you want to make a constructive contribution, how about suggesting a wording that reflects the advice that you think would be most useful to
the people that actually read the advice?

I would like to make a proposal, leaving the default setting as is
(aka: default to an enabled root account, no sudo), with only some wording changings.

Patch attached.

What do you think?

I think it's an improvement and I have some suggestions, which hopefully makes it even better. I don't have a git-diff, but hopefully this works too.

I'm not a native English speaker or particularly good at this, so it's more
the direction then the exact wording that's important. Others can undoubtedly improve upon it.

_Description: Root password:
"You need to set a password for 'root', the system administrative account. The 'root' user has full control over the whole system, so it's extra important to protect it with a strong password. A strong password is usually a sentence, consisting of words not commonly found together in natural language. And not easily associated with you."*

*) Not sure if there's room for it, but examples often help:
1) That's a battery staple? Correct!
2) Margaret Thatcher is 110% sexy

ad 1) xkcd 936
ad 2) An example Edward Snowden gave in an interview (with Vice?)

Why?
- We need to get rid of the *word* part; making it long (via a sentence) is
the easiest way to make it stronger. I don't know if passphrase is (technically) correct or easily understood though.
- "A malicious or unqualified user ... can have disastrous results"
I think it doesn't add useful or correct info as a benign qualified 'root' user making an error and can also wreak havoc. (A good password doesn't prevent
that though)
- A memorable password or passphrase can (always?) be guessed; the goal is to make it as hard as possible.
- "It should not be a word found in dictionaries"
I know where it comes from, but it's not helpful. And it gives the impression it should be a single word. A 'normal' dictionary contains a LOT of words and saying you can't use any of them makes it almost impossible for the user to make a good password/passphrase. That they can remember.
I haven't verified it, but I'm guessing the words from Diceware Word List are all present in the 'normal' dictionary?

"Note that you will not see the password in clear text as you type it, except if you explicitly choose to show it."

You *are* able to see the plain text password, just not by default.

HTH,
Diederik
-----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZeJHxwAKCRDXblvOeH7b bhGjAQC+jgEP9ICEMUod0l0G6vVmNfg7LPAkMYXBIyCuJX/7YgD9FeVJ8glhf93u diRHs0udbRuW7h0UUa1S8h9/PTiC7Ak=
=B+Zf
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Diederik de Haas <didi.debian@cknow.org> writes:

Hi,

On Friday, 1 March 2024 20:46:49 CET Holger Wansing wrote:

Philip Hands <phil@hands.com> wrote (Fri, 01 Mar 2024 06:46:27 +0100):

If you want to make a constructive contribution, how about suggesting a
wording that reflects the advice that you think would be most useful to
the people that actually read the advice?

I would like to make a proposal, leaving the default setting as is
(aka: default to an enabled root account, no sudo), with only some wording >> changings.

Patch attached.

What do you think?

I think it's an improvement and I have some suggestions, which hopefully makes
it even better. I don't have a git-diff, but hopefully this works too.

I'm not a native English speaker or particularly good at this, so it's more the direction then the exact wording that's important. Others can undoubtedly
improve upon it.

_Description: Root password:
"You need to set a password for 'root', the system administrative account.

This sentence is the thing that prompted me to change things in the
first place, because it is not true. One does not _need_ to set a root password.

I don't actually care very much whether we encourage sudo use. My
wording ended up (after many variations) quite strongly encouraging it
mostly as an antidote to the implication that comes from having a
question dedicated to setting the root password, but I'd be happy with
any wording that makes sure that people understand that both options are totally fine.

The other thing that I was trying to ensure is that people are reassured
that they'll get to specify a password that will get them root access even if they decide to leave the root password unset. This is because I've seen
people become quite uncertain about what to expect at this point in the install.

I've found that it is not easy to come up with things that include much
nuance about this, while still fitting in the space available, which is
why I decided to try a more opinionated approach.

One could soften what I wrote by replacing "generally recommended" with something like "often appropriate" -- how does that seem to people?

One can of course tinker with this stuff indefinitely. I actually spent
a fair amount of time wondering how best to describe not setting a root password for instance -- should one say "leave the password unset", "set
an empty password", "enter no password", or something like "just hit
<RETURN>"? (and does that last one actually apply to all the available
UIs?).

The same goes for how you say that the password is not going to get
shown (unless you ask for it to be shown), which in the GTK UI gets
characters replaced with dots, IIRC in the text UI its with asterisks,
and I'd guess it just gets completely hidden in the speech install.

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXjhwYACgkQ0EujoAEl 1cBAWA/+Kn1adgonBeZu6Dd5z74j3vuR1ff7HfQsx8IA12x29xhRvnhUIyi7+9Ru 54ibB1+5GHaTKaMR1dAOYtXJL1PrrnnwfPbFXAiO6szfv9xjqWESIoHUgF0hPUvN txv+xmmO805xJ57N1yz5neTGLy4UrpvXif5OmWnTITDIZSPyxVwbLz26dAzOdnHL l4Y78rh+r4nfoVq+hps2qsTHE6sCbTRA0Wh3RpOo+NTZs96pB6M02pxhalKAv1vx arm7YC3ZfafzjppC6cF1KeepqWyxdT7eJ0EYv0DpjXk7E7mW3dXn/SRVPs6+gFZN HAkt8IMKXZ0wsjd0ZlwNKbJ1J71WE3bsWG7LGWL0QOfgDjpl1kUerl3zmj8tULOH nvXRJzjyz0lvcWdcEvU15j8KwgK5D2y074hBbeeCrmnA4hIgE52tu43uaKxVKEj2 T5tOZc8b2bNnmWBpt0aqANRnulQxtt9XXzYKzpieu3tU0D0WW4cDPnwoXY+CRx7m Rr7OiTXVKWsyh7xiUNknQHhQfDxrnuYvPksLSbbugMei2vGEyB2I3q5b6RGJJUGQ /51icOITg/AhD5PBjt6xmBgqzFnm51RbvSIymDhn+qziZLCzVvX0g1qZ9HTPwNNb OBVfekeVW+HrscJHGtF/GO17p8erV1NO68+jd2j1JP6sZzQXHGI=M7rp
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

On Saturday, 2 March 2024 21:07:34 CET Philip Hands wrote:

I don't actually care very much whether we encourage sudo use.

A person who I consider very knowledgeable deliberately went for sudo and disabled the root account for security reasons. It was an image provided by
him that I ended up nuking as I didn't know if/how I could rescue that system because it had no root account I could use.
I guess my knowledge (and certainly habits) are dated now.

The other thing that I was trying to ensure is that people are reassured
that they'll get to specify a password that will get them root access even
if they decide to leave the root password unset. This is because I've seen people become quite uncertain about what to expect at this point in the install.

You (both) obviously got more experience in these situations.

My response was based on Holger's suggestion. While I did read through various things, I missed the most important one: https://openqa.debian.net/tests/238094#step/passwords/1

That screen and wording looks pretty good :)

I've found that it is not easy to come up with things that include much nuance about this, while still fitting in the space available, which is
why I decided to try a more opinionated approach.

My suggestion took considerable time to formulate (and was still not very pleased with it) as I ran into the same problem.
*IF* we want more nuance/details, the install screens aren't the place.

I can get hung up too much on certain words (like 'passwords') and that's generally not very helpful. What I do (still) care about is getting rid of the "At least a capital letter and a special character" and that is absent from
the "passwords/1" screen :)
-----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZeOehgAKCRDXblvOeH7b bls3AP9hzlw1sL2ETRyYGNSbGLRn9doNEHG4bP5QEfDS3TE97AD+K/JvxCf7AxYV AWa20x5i9sY+BoHYHsEZrlt23Yo+egQ=
=iJ8L
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

This is a multi-part message in MIME format.

Hi,

Am 2. März 2024 21:07:34 MEZ schrieb Philip Hands <phil@hands.com>:

This sentence is the thing that prompted me to change things in the
first place, because it is not true. One does not _need_ to set a root >password.

It should be understood as
"If you want to enable login as root, you have to set a root password now."

And in expert mode it is in fact working this way:
At first, you are asked if you want to enable login as root. If you answer yes here, you are prompted to set a root password.
And at that point it is indeed required to set a root password, since you chose to enable root login in the first question and the installer does not allow an empty password for root.

To make it work in default install, we could change the question as
in above citation.

I don't actually care very much whether we encourage sudo use. My
wording ended up (after many variations) quite strongly encouraging it
mostly as an antidote to the implication that comes from having a
question dedicated to setting the root password, but I'd be happy with
any wording that makes sure that people understand that both options are >totally fine.

The sudo possibility is also mentioned:

'The root user should not have an empty password. If you leave this
empty, the root account will be disabled and the system's initial user
account will be given the power to become root using the "sudo"
command.'

I have rephrased that a bit, see below.

The other thing that I was trying to ensure is that people are reassured
that they'll get to specify a password that will get them root access even if >they decide to leave the root password unset. This is because I've seen >people become quite uncertain about what to expect at this point in the >install.

I've found that it is not easy to come up with things that include much >nuance about this, while still fitting in the space available, which is
why I decided to try a more opinionated approach.

One could soften what I wrote by replacing "generally recommended" with >something like "often appropriate" -- how does that seem to people?

Your proposal too much focusses on the sudo way IMO.
We risk getting complains from people, who miss advise regarding the
enabled root login.

I have rephrased the dialog a bit, to make the sudo way more visible and
better understandable.

One can of course tinker with this stuff indefinitely. I actually spent
a fair amount of time wondering how best to describe not setting a root >password for instance -- should one say "leave the password unset", "set
an empty password", "enter no password", or something like "just hit ><RETURN>"? (and does that last one actually apply to all the available
UIs?).

The same goes for how you say that the password is not going to get
shown (unless you ask for it to be shown), which in the GTK UI gets >characters replaced with dots, IIRC in the text UI its with asterisks,
and I'd guess it just gets completely hidden in the speech install.

I think that's not much of a problem. People are used to the situation,
that passwords are not shown, but replaced by asterisks or similar.
And we have the checkbox for showing it in clear text, that should be
enough.


Updated patch attached.


Holger




diff --git a/debian/user-setup-udeb.templates b/debian/user-setup-udeb.templates
index cdb6d78..7393511 100644
--- a/debian/user-setup-udeb.templates
+++ b/debian/user-setup-udeb.templates
@@ -34,21 +34,19 @@ Template: passwd/root-password
Type: password
# :sl1:
_Description: Root password:
- You need to set a password for 'root', the system administrative
- account. A malicious or unqualified user with root access can have
+ If you want to allow login as root, you need to set a password for 'root',
+ the system administrative account now.
+ A malicious or unqualified user with root access can have
disastrous results, so you should take care to choose a root password
- that is not easy to guess. It should not be a word found in dictionaries,
- or a word that could be easily associated with you.
+ that cannot be guessed. It should not be a word found in dictionaries,
+ or something that could be easily associated with you.
.
- A good password will contain a mixture of letters, numbers and punctuation
- and should be changed at regular intervals.
+ You can also leave the password for root empty

XPost: linux.debian.maint.boot

Holger Wansing <hwansing@mailbox.org> writes:

Hi,

Am 2. März 2024 21:07:34 MEZ schrieb Philip Hands <phil@hands.com>:

This sentence is the thing that prompted me to change things in the
first place, because it is not true. One does not _need_ to set a root >>password.

It should be understood as
"If you want to enable login as root, you have to set a root password now."

And in expert mode it is in fact working this way:
At first, you are asked if you want to enable login as root. If you answer yes
here, you are prompted to set a root password.
And at that point it is indeed required to set a root password, since you chose to enable root login in the first question and the installer does not allow an empty password for root.

To make it work in default install, we could change the question as
in above citation.

I don't actually care very much whether we encourage sudo use. My
wording ended up (after many variations) quite strongly encouraging it >>mostly as an antidote to the implication that comes from having a
question dedicated to setting the root password, but I'd be happy with
any wording that makes sure that people understand that both options are >>totally fine.

The sudo possibility is also mentioned:

'The root user should not have an empty password. If you leave this
empty, the root account will be disabled and the system's initial user account will be given the power to become root using the "sudo"
command.'

I have rephrased that a bit, see below.

The other thing that I was trying to ensure is that people are reassured >>that they'll get to specify a password that will get them root access even if >>they decide to leave the root password unset. This is because I've seen >>people become quite uncertain about what to expect at this point in the >>install.

I've found that it is not easy to come up with things that include much >>nuance about this, while still fitting in the space available, which is
why I decided to try a more opinionated approach.

One could soften what I wrote by replacing "generally recommended" with >>something like "often appropriate" -- how does that seem to people?

Your proposal too much focusses on the sudo way IMO.
We risk getting complains from people, who miss advise regarding the
enabled root login.

I have rephrased the dialog a bit, to make the sudo way more visible and better understandable.

One can of course tinker with this stuff indefinitely. I actually spent
a fair amount of time wondering how best to describe not setting a root >>password for instance -- should one say "leave the password unset", "set
an empty password", "enter no password", or something like "just hit >><RETURN>"? (and does that last one actually apply to all the available >>UIs?).

The same goes for how you say that the password is not going to get
shown (unless you ask for it to be shown), which in the GTK UI gets >>characters replaced with dots, IIRC in the text UI its with asterisks,
and I'd guess it just gets completely hidden in the speech install.

I think that's not much of a problem. People are used to the situation,
that passwords are not shown, but replaced by asterisks or similar.
And we have the checkbox for showing it in clear text, that should be
enough.

Updated patch attached.

Holger

diff --git a/debian/user-setup-udeb.templates b/debian/user-setup-udeb.templates
index cdb6d78..7393511 100644
--- a/debian/user-setup-udeb.templates
+++ b/debian/user-setup-udeb.templates
@@ -34,21 +34,19 @@ Template: passwd/root-password
Type: password
# :sl1:
_Description: Root password:
- You need to set a password for 'root', the system administrative
- account. A malicious or unqualified user with root access can have
+ If you want to allow login as root, you need to set a password for 'root', + the system administrative account now.
+ A malicious or unqualified user with root access can have
disastrous results, so you should take care to choose a root password
- that is not easy to guess. It should not be a word found in dictionaries,
- or a word that could be easily associated with you.
+ that cannot be guessed. It should not be a word found in dictionaries,
+ or something that could be easily associated with you.
.
- A good password will contain a mixture of letters, numbers and punctuation - and should be changed at regular intervals.
+ You can also leave the password for root empty here, to disable the root
+ account; the system's initial user account (which will be set up in the next
+ step) will then be given the power to become root using the "sudo" command.
.
- The root user should not have an empty password. If you leave this
- empty, the root account will be disabled and the system's initial user
- account will be given the power to become root using the "sudo"
- command.
- .
- Note that you will not be able to see the password as you type it.
+ Note that you will not be able to see the password as you type it (except if
+ you choose to show it in clear text).

Template: passwd/root-password-again
Type: password
@@ -110,8 +108,7 @@ Template: passwd/user-password
Type: password
# :sl1:
_Description: Choose a password for the new user:
- A good password will contain a mixture of letters, numbers and punctuation - and should be changed at regular intervals.
+ Make sure to select a strong password, that cannot be guessed.

Template: passwd/user-password-again
Type: password

I found that there were some phrases that I was avoiding for various
reasons, a couple of which I see you've used, so I'll say why I was avoiding them and see if I have a persuasive argument for doing so.

"allow/deny login/access as root":

The problem here is that not having a password for root only prevents
one from getting direct access to root by using a password. Indirect
access is still available via sudo, and direct access is still
available via key bassed ssh. I was also avoiding saying things like
"disable the root account" for the same reason.

This is why I ended up with the phrasing:

direct password-based logins to 'root'.

"using the 'sudo' command":

This I was avoiding becuase it might give the impression that one MUST
use sudo, whereas most people will actually get their root acces via a
GUI prompting them for their own pasword (because it's checked that
they're in the sudo group) when doing things like unlocking their
network or printer settings. I thought it was worth mentining the
'sudo' group explicitly because that gives something to search for if
they want to find out more, but telling people they need to use the
sudo command seemed like a step too far.

Regarding the password advice, I ended up concluding that it's pretty
unlikely that anything we say at this point will have any effect on
people's behaviour, but then I'm probably just an old cynic. Also, I
failed when trying to come up with a wording which I was happy with,
which is why I ended up discarding the advice entirely.

If we want to keep the password advice in then I think what you wrote is (mostly) OK, although I think it implies that one should be choosing a
single "password" (although, not a word in any normal sense), which
could be argued to steer people away from the perfectly decent xkcd
approach of using several dictionary words. Saying "Password or
Passphrase" at least once would probably address that.

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXlWWsACgkQ0EujoAEl 1cCPqA/7BCKl3aquWQxKqAcDFCs1z+FfScWaJZpoAnKW6QL8V9cCoM06qstHArwW DNFvzUnnT/h0YnET4nwz1t5VeaF5wHst+/Un9fISRURbjQ6o84vO6tJ9D3w+B0Dh /H67FC3qlAn2YEuagt1bqEpWsKbTDHVwhugnv81dHEE4RdoEQhTdCMo3qbydhqPW /TZjZHSgITWuuHDi1O+RvtiwbUqCRNGcZDPuPJq+zHJ6AdCvejzmQxtD6Q3EQU0+ GYtOpxBMunU0t0M+K4vXRAYTRo3qVik7FK6AL0s0Eh7p0XQhGI7NI1bMQcUS0iLL Tx0vaDfIaV1F5i4l+i25iOeB1yI6ZySkakxSZRNg7BPF5vBKn3DIARMUYPzOT5XT aO+/HzNXQ1S3FSSuQrQfmU0BXKDoJd+3a+4ibqtLBe9ONTfXIUAYzCwBfhYebluJ A2pyAsVz3bJeBU33A+X4UA0POjRk0OmtxMQWplWv28i9b732WBsg2/RPkzdom2X2 cj9LFIIkZ77CzcNwEmm7yngQn9gQjvgpub49ahd0Gm1soiqVvk03DdJrdtA4RiQl L4B1EQsCVruSW0Lc446ZHkZ6vX3iCW+nsDSzgPZZvuATkndBayWTLcBPL7hlB6aA /erVS8PMFVZCXRJLxYaDgXZxGpO/T5jW0jPCqv5NmpLkzxU5ojM=CGjg
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

Hi,

Am 4. März 2024 06:17:31 MEZ schrieb Philip Hands <phil@hands.com>:

I found that there were some phrases that I was avoiding for various
reasons, a couple of which I see you've used, so I'll say why I was avoiding >them and see if I have a persuasive argument for doing so.

"allow/deny login/access as root":

The problem here is that not having a password for root only prevents
one from getting direct access to root by using a password. Indirect
access is still available via sudo, and direct access is still
available via key bassed ssh. I was also avoiding saying things like
"disable the root account" for the same reason.

This is why I ended up with the phrasing:

direct password-based logins to 'root'.

Ok, seems fair. I would change to that then.

"using the 'sudo' command":

This I was avoiding becuase it might give the impression that one MUST
use sudo, whereas most people will actually get their root acces via a
GUI prompting them for their own pasword (because it's checked that
they're in the sudo group) when doing things like unlocking their
network or printer settings. I thought it was worth mentining the
'sudo' group explicitly because that gives something to search for if
they want to find out more, but telling people they need to use the
sudo command seemed like a step too far.

Correct so far. Maybe a bit more technical and therefore probably
not the easiest choice for newbies, but I have no problem using that.

Regarding the password advice, I ended up concluding that it's pretty >unlikely that anything we say at this point will have any effect on
people's behaviour, but then I'm probably just an old cynic. Also, I
failed when trying to come up with a wording which I was happy with,
which is why I ended up discarding the advice entirely.

If we want to keep the password advice in then I think what you wrote is >(mostly) OK, although I think it implies that one should be choosing a
single "password" (although, not a word in any normal sense), which
could be argued to steer people away from the perfectly decent xkcd
approach of using several dictionary words. Saying "Password or
Passphrase" at least once would probably address that.

Ok, makes it a bit longer, but it could be worth it.

I will prepare a new patch with above.


Holger


--
Sent from /e/ OS on Fairphone3

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

On Monday, 4 March 2024 10:43:59 CET Holger Wansing wrote:

Regarding the password advice, I ended up concluding that it's pretty >unlikely that anything we say at this point will have any effect on >people's behaviour, but then I'm probably just an old cynic. Also, I
failed when trying to come up with a wording which I was happy with,
which is why I ended up discarding the advice entirely.

If we want to keep the password advice in then I think what you wrote is >(mostly) OK, although I think it implies that one should be choosing a >single "password" (although, not a word in any normal sense), which
could be argued to steer people away from the perfectly decent xkcd >approach of using several dictionary words. Saying "Password or
Passphrase" at least once would probably address that.

Ok, makes it a bit longer, but it could be worth it.

https://wiki.debian.org/Passwords doesn't exist (yet), but it's an easy to remember URL and we'd have all the space we need to give proper advise? -----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZeXhRgAKCRDXblvOeH7b bmyFAQDE3dPn50Vt1LV45tlGkgslTUBVU2rK4bjE5S/q3QVrSAD/clikMlEEEnE7 zF4wIDX5k1eRPf2X24d5/LZTKQvs/gI=
=q1JJ
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

This is a multi-part message in MIME format.

Hi,

Holger Wansing <hwansing@mailbox.org> wrote (Mon, 04 Mar 2024 10:43:59 +0100):

Hi,

Am 4. März 2024 06:17:31 MEZ schrieb Philip Hands <phil@hands.com>:

I found that there were some phrases that I was avoiding for various >reasons, a couple of which I see you've used, so I'll say why I was avoiding >them and see if I have a persuasive argument for doing so.

"allow/deny login/access as root":

The problem here is that not having a password for root only prevents
one from getting direct access to root by using a password. Indirect
access is still available via sudo, and direct access is still
available via key bassed ssh. I was also avoiding saying things like
"disable the root account" for the same reason.

This is why I ended up with the phrasing:

direct password-based logins to 'root'.

Ok, seems fair. I would change to that then.

"using the 'sudo' command":

This I was avoiding becuase it might give the impression that one MUST
use sudo, whereas most people will actually get their root acces via a
GUI prompting them for their own pasword (because it's checked that
they're in the sudo group) when doing things like unlocking their
network or printer settings. I thought it was worth mentining the
'sudo' group explicitly because that gives something to search for if
they want to find out more, but telling people they need to use the
sudo command seemed like a step too far.

Correct so far. Maybe a bit more technical and therefore probably
not the easiest choice for newbies, but I have no problem using that.

Regarding the password advice, I ended up concluding that it's pretty >unlikely that anything we say at this point will have any effect on >people's behaviour, but then I'm probably just an old cynic. Also, I
failed when trying to come up with a wording which I was happy with,
which is why I ended up discarding the advice entirely.

If we want to keep the password advice in then I think what you wrote is >(mostly) OK, although I think it implies that one should be choosing a >single "password" (although, not a word in any normal sense), which
could be argued to steer people away from the perfectly decent xkcd >approach of using several dictionary words. Saying "Password or
Passphrase" at least once would probably address that.

Ok, makes it a bit longer, but it could be worth it.

I will prepare a new patch with above.

Updated patch attached.

Holger


--
Holger Wansing <hwansing@mailbox.org>
PGP-Fingerprint: 496A C6E8 1442 4B34 8508 3529 59F1 87CA 156E B076

diff --git a/debian/user-setup-udeb.templates b/debian/user-setup-udeb.templates
index cdb6d78..437b9d7 100644
--- a/debian/user-setup-udeb.templates
+++ b/debian/user-setup-udeb.templates
@@ -33,22 +33,21 @@ _Description: Allow login as root?
Template: passwd/root-password
Type: password
# :sl1:
-_Description: Root password:
- You need to set a password for 'root', the system administrative
- account. A malicious or unqualified user with root access can have
- disastrous results, so you should take care to choose a root password
- that is not easy to guess. It should not be a word found in dictionaries,
- or a word that could be easily associated with you.
+_Description: Root password/passphrase:
+ If you want to allow direct password-based login as root, you need to set a
+ password for 'root', the system administrative account now.
+ A malicious or unqualified user with roo

XPost: linux.debian.maint.boot

Hi,

Diederik de Haas <didi.debian@cknow.org> wrote (Mon, 04 Mar 2024 15:57:10 +0100):

On Monday, 4 March 2024 10:43:59 CET Holger Wansing wrote:

Regarding the password advice, I ended up concluding that it's pretty >unlikely that anything we say at this point will have any effect on >people's behaviour, but then I'm probably just an old cynic. Also, I >failed when trying to come up with a wording which I was happy with, >which is why I ended up discarding the advice entirely.

If we want to keep the password advice in then I think what you wrote is >(mostly) OK, although I think it implies that one should be choosing a >single "password" (although, not a word in any normal sense), which
could be argued to steer people away from the perfectly decent xkcd >approach of using several dictionary words. Saying "Password or >Passphrase" at least once would probably address that.

Ok, makes it a bit longer, but it could be worth it.

https://wiki.debian.org/Passwords doesn't exist (yet), but it's an easy to remember URL and we'd have all the space we need to give proper advise?

Would need to check if that fits in the relevant screens (I want to avoid having a scroll bar on that screens).


Holger

--
Holger Wansing <hwansing@mailbox.org>
PGP-Fingerprint: 496A C6E8 1442 4B34 8508 3529 59F1 87CA 156E B076

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot
To: hwansing@mailbox.org (Holger Wansing)
Copy: phil@hands.com (Philip Hands)

On Monday, 4 March 2024 22:30:57 CET Holger Wansing wrote:

https://wiki.debian.org/Passwords doesn't exist (yet), but it's an easy to remember URL and we'd have all the space we need to give proper advise?

Would need to check if that fits in the relevant screens (I want to avoid having a scroll bar on that screens).

I didn't mean importing its contents, but just including a link/URL, which a user can type in a browser on a secondary device.
Therefor it needs to be short/memorable.

I later realized that putting it in the wiki may be useful, but also dangerous as anyone can edit a wiki (page). So another place where only authorized changes can be made is probably better.

Cheers,
Diederik
-----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZeZDJwAKCRDXblvOeH7b bpePAP4jRI2Vlaa0PBy9Plum3q7NV+5TZQ/AMPrDyPhTDS2mKAD9F6ciMXwkNe5t DqjXZvZH6Rx+Wj0Ee+QBGYgKVm0yxAA=
=Q2Pw
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Hi,

Am 5. März 2024 15:01:21 MEZ schrieb Philip Hands <phil@hands.com>:

Here are my latest attempts:

"Be aware that that a ..."
doubled "that"

"... (unless you select to show it)"
missing fullstop.

Otherwise: looks good to me.


Holger



--
Sent from /e/ OS on Fairphone3

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Holger Wansing <hwansing@mailbox.org> writes:

Hi,

Am 5. März 2024 15:01:21 MEZ schrieb Philip Hands <phil@hands.com>:

Here are my latest attempts:

"Be aware that that a ..."
doubled "that"

"... (unless you select to show it)"
missing fullstop.

Well spotted - Thanks :-)

Otherwise: looks good to me.

Cool, in that case I'll fix those two things and then use the result for
the MR[1], and if the openQA test runs look OK, will merge that.

Cheers, Phil.

[1] https://salsa.debian.org/installer-team/user-setup/-/merge_requests/7
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXnTikACgkQ0EujoAEl 1cAXVxAAwzwQemafmHSoxQmbDKO6LJCFOAssifYwiw2Ppa1YqqPMhJocBXCUZVzB F6Gxy2zq80Ce2zb1i5tkeF6Bz5RqZqZc/50na+VUHJ/MmxKHMpcRvRNITPiXxWVW 36BNthOPjxS0cDbSFyMP7CBM7qUqx8DCmzh1Pbw9cbHuuwAArxbaqxk8GOSmHMiB b/jFbrrC+hlc+1zbC1SkbrmVSzY+CjUwYXy6yB1wnUS+3HLrRtVGY0KcB+xcwykE xtDo3RkIJm1MZwobAz6u/acfTNYkmfEZq6mJPXf2Awzy48Kn2/jxbhLJWFB1Z3Kl QJVtmfsYmHx7r7/nSwdkGN4COtFZQ2jd+jaDNaWtKgvQy+fHU6vKM96UaKQ3yEco /xiRWwwVi1mdfuPiiTvsbP8M3/hsnKHiWCiLLk3mUz4c+UFC3QYR2o8WQxqirubE DTsWgscKRD39ADSeq4hDbzg8gjPIeFbvCDGwJnE4vFe4h42dnI6ary69m/87iRjY x21NQJ5NhLTqLfq2A7YIHgt9WyTdCdx5xy3yupWntQ2ZpHdK3YScIZ2kjWro5jN6 cSBNteXHvXcQ6cW3xvYo28Z2zBwDvB2d1J3wdnaniDGlrGYl708eeT5vqPtgO2PL BzK2Ed6SnA30f2dXlw7v1UFmQeO0SY4kYx1PouAlA5B92ZxAzro=fn1Q
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot
Copy: hwansing@mailbox.org (Holger Wansing)

On Tuesday, 5 March 2024 19:28:25 CET Cyril Brulebois wrote:

Philip Hands <phil@hands.com> (2024-03-05):

Cool, in that case I'll fix those two things and then use the result
for the MR[1], and if the openQA test runs look OK, will merge that.

Only skimmed over it, but that looks sensible, thanks all.

Is it worth getting d-l-english involved in a final review before
getting that translated? Contrary to a lot of not-so-critical l10n
material, that particular screen is crucial, and I'd hate it if we
wasted translator efforts due to a missed typo or obvious improvement.

I had started a reply before I had to get out the door, so I'll just keep it
to one suggestion, which may seem a bit 'radical':

How about getting rid of the password advise entirely from the d-i screen?

We could still make educational resources with f.e. tips on passwords/ passphrases in f.e. the wiki, but it's not the job or the (best) place to put such things in the d-i screens?
-----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZedlJAAKCRDXblvOeH7b bpl6AP0RyJsfvyl2yU7pwZBpYztGRNplp958L3h9otRmQKi0fwD/YN+TrS6Jys0B TVtYXi8OnB5mp8n/RYkD9hqZjEK7Hg0=
=tDrJ
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Philip Hands <phil@hands.com> (2024-03-05):

Cool, in that case I'll fix those two things and then use the result
for the MR[1], and if the openQA test runs look OK, will merge that.

Only skimmed over it, but that looks sensible, thanks all.

Is it worth getting d-l-english involved in a final review before
getting that translated? Contrary to a lot of not-so-critical l10n
material, that particular screen is crucial, and I'd hate it if we
wasted translator efforts due to a missed typo or obvious improvement.


Cheers,
--
Cyril Brulebois (kibi@debian.org) <https://debamax.com/>
D-I release manager -- Release team member -- Freelance Consultant

-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEEtg6/KYRFPHDXTPR4/5FK8MKzVSAFAmXnZEYACgkQ/5FK8MKz VSD92xAAn8lh+EvD2MXsY7GZRUjoldE/DgnwWEnwekYIdE34/Zz4ZV2RqtAKRolR odF6WN5OKC1IWMXwuBDAfVC+PMrKCi1llkGKNAoyCmfHiCBrc7WMuZ+O0yoIVsdQ /5AuxJHMQzeHUyLEeEBlTS9tPP7v5AwPx+kJDtQ4XGTshn0iAcf3MbqUvNtAp2KA fVCJtaoj901RYB+FE+t5piEb15PrSDrR90mVrfKALwCo2tt+Vos/QnXBqFPYAv6a ygaIJOmrKLtEK1WbVSe81p2fAqyXo9JALN+/7EOhYdV0kl4ctkdr08JLDzpBqtIk Ttdw+FNAKb4gLNXgGi6Ki+agPkufORMSV0nMq6bLVLQBnTaiL/f8iyVCumsc7Dfy 4pMi++SxaHJacr5wPsHr3W4N14brPIca+XFR7aYMfJ3Fw8GcGZYN7iFQboehVkVU dcGkr+6yrQiEfkcbNLO0gYC7YxsNGZJXpTSaInSDcKiHpC//kUSNtIC064jbItXq DSucPK9MHSYriAa3qvd8xkoU1CsB8CSYdnrp+uC/6jy6ndwLD4WqQyh90vOY9OSV EhK7j2LGZrip6o/1IAsX3usyXmFJLgXicdQhyRL2e8vAVdLQ7fCLg/aqgeM/zt+9 HPjB+E1F0fSO9HLCi0k1RuKB1R2Q+A4SfYZc/21C554Q5kbcqqs=
=7de6
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
*

XPost: linux.debian.maint.boot

Hi all,

Am 5. März 2024 19:28:25 MEZ schrieb Cyril Brulebois <kibi@debian.org>: >Philip Hands <phil@hands.com> (2024-03-05):

Cool, in that case I'll fix those two things and then use the result
for the MR[1], and if the openQA test runs look OK, will merge that.

Only skimmed over it, but that looks sensible, thanks all.

Is it worth getting d-l-english involved in a final review before
getting that translated? Contrary to a lot of not-so-critical l10n
material, that particular screen is crucial, and I'd hate it if we
wasted translator efforts due to a missed typo or obvious improvement.

Good idea.

@d-l10n-english: hey guys, we would like to get a proposal reviewed,
which aims to improve the root/user password screens in the installer.

Please find the related merge request at <https://salsa.debian.org/installer-team/user-setup/-/merge_requests/7>

There was some (more) discussion / various attempts on finding
the correct wording, most of which can be found in <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064617>


Maybe we should have put d-l10n-english into the loop earlier, sorry for not doing that.


Holger


--
Sent from /e/ OS on Fairphone3

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Cyril Brulebois <kibi@debian.org> writes:

Philip Hands <phil@hands.com> (2024-03-05):

Cool, in that case I'll fix those two things and then use the result
for the MR[1], and if the openQA test runs look OK, will merge that.

Only skimmed over it, but that looks sensible, thanks all.

Is it worth getting d-l-english involved in a final review before
getting that translated? Contrary to a lot of not-so-critical l10n
material, that particular screen is crucial, and I'd hate it if we
wasted translator efforts due to a missed typo or obvious improvement.

I'm happy with doing that, and we might as well get it right given that
it's been ~12 years since the first bug, so a few more days makes no
odds.

I'm pretty sympathetic with the idea of simply dropping the password
advice (as just mentioned by Diederik) but it seems that Holger prefers
to keep it in -- either is fine with me.

BTW I don't know much about how the translation side of things works,
but given that there are many ways of getting the fine detail of this to
be incorrect in various ways, is there a standard method for adding
hints for translators, and should that be done?

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXndjUACgkQ0EujoAEl 1cBjMA//VNm51p/HR2/7yjvNI/Q3Ou5aokv62EnKUVEPEwDYpXnGNHxbdzbPL2w8 o/XJOG97VeUAvE6krOmBGGYn7DNt9P29oJHDzvu29eGWRpVO2Jsxh/Ds3aE0tACs gqdluIp3S1tvWLrKZoQiFkPKHaSHvW/ECqj3nXcMxlHorz5TmEHSlDDzSpito5b/ pnmaCPenm15WT7x3xac+Wxj5bDX07xWNSepznbyc2olFYYKGKBRD+VsBSzS4gBy2 f8hmOOjTfB2LwCItbQ7got4i1tcaDIfGJYmGG/F0PJLa6LR8QKW1XQSzwamVl4oB qN4OtoMLPd8uopX/T7u287KXj+CKUHph3uztE6EK7Mc4Rkipu2cXYEQjkGiKlKMX bZe0B82ajLwUZ0LeSqcE6jZboZ2euTD2or8kR91bcLNWWlTq+Zz9pK83wJ1l4Vex P3Kf8D6uiDp1kwCvKMqHkZ3eZxecOjiw7yw4Z2FtTcIc2nZPNVX0q5QAGj12eyQQ QQ0BAkyYbv9uMPFa+S1cKRdE5AhYY2YvnYR6fqq4/+09gdyvX9T19Gfpm/UrVl7z qQnl02hqtRWM0iRI2P4GIqrlp4ISNRlnSQJut9BsYS2twOrJwhuexpBdd29Za3Mo SWKInSRa9Ei5S+nxsy7twbtH/de0Gc4Vbnx6QH+6S+v3P2FMfrc=+YTE
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

Justin B Rye <justin.byam.rye@gmail.com> writes:

Holger Wansing wrote:

@d-l10n-english: hey guys, we would like to get a proposal reviewed,
which aims to improve the root/user password screens in the installer.

Please find the related merge request at
<https://salsa.debian.org/installer-team/user-setup/-/merge_requests/7>

It needs a small amount of rephrasing, but the most important problem
is that it starts by saying you need to set a password and then goes
on to suggest that you might not need to set a password. Maybe that
can be fixed by rearranging things slightly...

Template: passwd/root-password
Type: password
# :sl1:
_Description: Root password/passphrase:
To allow direct password/passphrase-based access to the 'root'
(system administrative) account you can set it up here.
The results can be disastrous if a malicious or incompetent user
obtains root access, so you should not set one that can be guessed,
found in dictionaries, or easily associated with you.
.
Alternatively, you can lock root's password
by leaving this setting empty, and
instead use the system's initial user account
(which will be set up in the next step)
to become root. This will be enabled for you
by adding that user to the 'sudo' group.
.
Note: what you type here will be hidden (unless you select to show it).

Does this still feel like the same advice?

The reason behind that structure was supposed to be that one definitely
needs _a_ password, but not necessarily a root password, so the password
advice applies to whichever password you'll decide to grant root access
to, which might not be set here.

I'm OK with the way you've phrased it, although my personal preference
would be to simply drop the "disastrous" sentence if we use this
version, because I think it breaks the straightforward flow of the text
laying out the choice we're trying to get the user to make between the
two available options. (I also rather doubt that anything we say at this
point in the install will have the slightest influence on people's
choice of password).

Otherwise the only thing I see is:

Template: passwd/user-password
Type: password
# :sl1:
_Description: Choose a password/passphrase for the new user:
Make sure to select a strong password/passphrase, that cannot be guessed.

No comma needed there.

Well done -- I kept noticing that, and somehow didn't get round to
fixing it. I've now deleted it, so thanks for pointing it out again. :-)

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXnjbYACgkQ0EujoAEl 1cAGjxAAxDn2nTqPHnoCFLS2hquOLmKqH104kyz4EXNgL2c5DPW5hlFpjqr3TOM6 vEpsg/Su11koQnNVVbGDZW6BoXPMD7H6mKTHMiiUX3vCniElyz7Kk/iA2f8oTsua hjJRLWZVQNIlR5wjyhCtcWsVBGLYVtQ4e0hDzbFFxPet8TYHIWibIn3OGExs1NrH kUNWy32Nqj7BYRK3saDMu69qJZ8JGy6KcOgEds6vj6LKjPD7Y1Uz6uauuW78Oq7E U6YwaWhHIuWq1CW45vF7pwj+NZ+oAl0gQ1KQe3AeMna1gsMBO34s7dAkhHKpSv6G XuUHOfN1QwQci0n3A+xmS83iPLRqD0KCe1KNqh353BPBgG5+qBQx5xqT152rnyvg wd8iBTEN36q0kpAMdkTJjKHR/XUbQKxUvAhndkmrpDjrD3fRtvXetWw96iRUjHFG FBBhdnH75tDb7loWdrviGYv/Gke7e/CebNRAW6C6VGtyKqenSfP6wRq21WI1ZaSK JkFuhzwWpzGvk7qaeM2DzEapzeLJk/CueoEnGwE9V/L2IF3iNSzx81jFrJ8PVUXE GRFqjwMQX9Ccr/F1qAOeZpU2BkQs8I8YUuQX/ErWmYn5x+pClyUwZpNGh7A14j/X kVKRd3egKPemxpIpTxK7O+9JePfUStJS5JRTODqeGHhkpq1YHlY=ahO5
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

Justin B Rye <justin.byam.rye@gmail.com> writes:

Philip Hands wrote:

Justin B Rye <justin.byam.rye@gmail.com> writes:

...

The reason behind that structure was supposed to be that one definitely
needs _a_ password, but not necessarily a root password, so the password
advice applies to whichever password you'll decide to grant root access
to, which might not be set here.

This template is specifically about the "Root password/passphrase";

Well, sort-of, except that the user's response (whether to leave this
blank or not) modifies what happens with the user account's permissions,
so it's also about explaining the way that logic works in the installer
and what that will do to the target system.

probably I should have quoted the patch I was looking at, which starts
with "One needs a password/passphrase that grants access to the 'root' (system administrative) account" but goes on to say "Alternatively,
you can lock root's password by leaving this setting empty".

I'm intimately familiar with the patches you're reading, so I feel like
this comment suggests that we may be talking past one another somehow.

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXoHFEACgkQ0EujoAEl 1cBpAQ/9Esn2U7I1+OQOaWAaLXOAeLO/QdfbVHk/c60YGeo3CfoIEweiavlGCyoG 7D9ZWiI8ZrJn7IISz7tvfTSm2rELCvQ8zrc4ldAFyvH0kkv0ViW/si7RmH3T2KxJ JDp0Tk62FJxy6vqYcJhdaFgGPMTHa+J8q6t7qGw9CYt9/1eq/751PYgGwsSnegf1 fMg1vfxxjaOEmIqrwqFBubwMAwtyOQnXADeNXLxfHC7smZWHQPYvrkNVNBRhGetK nSF2mYWe/gns+fsc4QpJwmdEJHU0WP/UqGRcoKsJEftWejXnNekBgOPr3ZRoj9q+ sejMOG7Pb6wUHSLTD+QZngmhIKDCm+Y6rzPFyAwYa4RlJ/xqSazZ4rWuH1oDokPh p/ntAG3Lfp4HkBFwdfiJLbZgAH5EZBgmmiIkkctd0texmhwxTPiO8cnNxYjV3S+w oNJDZtqMiwlNVkGP7/lMRrTC2L+8MBvS3CbfMkH/Bca+I+YqZ2wVkK/C0iFGndTa ajSRN1zqn5Pf/ZPnzdkJfgMRFj/vFR+S1qwGz3/PZPyYl98BYMTkNzvdWfjb6Tij xNTI6VI9aoXst0TVi+SYgWpWGMWxC7ALSL3ldEP+Pl9m1Ul+EdNSKLdPCcruLcoV UZ0WOWV4etTCGQ2LowlaHLr2VPzLqdNRCTnDbmlbOGxmIv0o8Js=0LD8
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

Justin B Rye <justin.byam.rye@gmail.com> writes:

Philip Hands wrote:

Justin B Rye <justin.byam.rye@gmail.com> writes:

Philip Hands wrote:

Justin B Rye <justin.byam.rye@gmail.com> writes:> ...
The reason behind that structure was supposed to be that one definitely >>>> needs _a_ password, but not necessarily a root password, so the password >>>> advice applies to whichever password you'll decide to grant root access >>>> to, which might not be set here.

This template is specifically about the "Root password/passphrase";

Well, sort-of, except that the user's response (whether to leave this
blank or not) modifies what happens with the user account's permissions,
so it's also about explaining the way that logic works in the installer
and what that will do to the target system.

probably I should have quoted the patch I was looking at, which starts
with "One needs a password/passphrase that grants access to the 'root'
(system administrative) account" but goes on to say "Alternatively,
you can lock root's password by leaving this setting empty".

I'm intimately familiar with the patches you're reading, so I feel like
this comment suggests that we may be talking past one another somehow.

Yes, this is a common problem: you're so familiar with what we need
it to say that you aren't noticing what the text currently does say. https://salsa.debian.org/installer-team/user-setup/-/commit/77c1517fade367bc465da2a5908c5ac47dd8bba7

Template: passwd/root-password
Type: password
# :sl1:
_Description: Root password/passphrase:
One needs a password/passphrase that grants
access to the 'root' (system administrative) account.
Be aware that a malicious or unqualified user
that obtains root access can have disastrous results,
so you should choose a password/passphrase that cannot be guessed.
It should not be a word found in dictionaries,
or something that could be easily associated with you.

(Summary: You DO need a root password.)

No, as I said, what that's trying to say is that there needs to exist a password that one way or the other will let one get access to the root
account (since otherwise one is not going to be able to admin the
machine), but that is not neccesarily the same thing as a "root
password", because the password being refered to might well be the
initial user's password, as long as they end up in the sudo group.

If it comes across as meaning that there needs to be a "root password",
then it's not succeeding in expressing the nuance of the situation
correctly, and we probably need to fix that (assuming that we can come
up with a better wording that still fits in the space available).

.
To allow direct password-based access to root,
you should set the 'root' password/passphrase here.
.
Alternatively, you can lock root's password
by leaving this setting empty, and
instead use the system's initial user account
(which will be set up in the next step)
to become root. This will be enabled for you
by adding that user to the 'sudo' group.
.
Note: what you type here will be hidden (unless you select to show it).

(Summary: You DON'T need a root password.)

Suggested rewrite (short version):

_Description: Root password/passphrase:
To allow direct password/passphrase-based access to the 'root'
(system administrative) account you can set it up here.
To protect your system you should not use one that can be guessed.
.
Alternatively, you can lock root's password
by leaving this setting empty, and
instead use the system's initial user account
(which will be set up in the next step)
to become root. This will be enabled for you
by adding that user to the 'sudo' group.
.
Note: what you type here will be hidden (unless you select to show it).

This is certainly better than good enough, so I'd be fine with this too.

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXoQGIACgkQ0EujoAEl 1cDpRhAAsiNO5rnmrnNy9TW9TgSFGhKHIVC0n7Jl9pm+i9rxmazXgXivTkAphD1D 9rYkZ0TAIW8u3SSk2TMZfV39Gsr0LQNdqmm4BOzISGfctwnyxtbC652jCA/4jCb3 3bUNJMJgJvoHnW7tgsXpMFZ8xWx0d5OmrvCTsH+cJqcXjiE4chYvdKY58kPvw/f5 v/1zeTyHlq/q7CTE7bcKqnThlJSyuYu3beHTfdSoIKhQXqtoIzn1zwET6es8g4f/ g2TRPC88Yir7Puz2z/4fe9WNkXm8s1vzPLQSWsXdtxHQQDFTk+V1ygQwm7mWrZ7r +RAup2wcD61C7fiZnDG907/fHEmHc44B5a7ZAaMHdf6aE0us+MsjfJ4Zi3xBZi86 km1WM5NEMg3tzPtATH/Nio7uvtpqHn2oy0wXJ7Xr/NGVXu6ssBUtpRBqIXTurP2G k+OzSTcg4tX+DPHBQNBmJSqGFHcDXxGPLlWnZ/VFU2SbFmH9ChFc2EC9w1G6fnSD 3yioNhl8jsRWMRm193UG5b1aUgRNP2TSD8E1wcUIWbuF5kWyN+6frUB6bg+uJNRG tdFyNjDxz7evX3+3tUfq1//W1XxkM4azbAOuXS5lk7zQ9ewzQ5lsK/NdNw0Gsqze IL3jSWCtnfliQzfiHlMcscmlbkonqYJHhe3HZhBIpiGUIrmxvPA=o/cp
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

On Wednesday, 6 March 2024 13:19:04 CET Justin B Rye wrote:

Maybe instead of saying "use the system's initial user account to
become root" it should say "allow the system's initial user account
to gain administrative privileges"? I'm not sure. Oh, and we might
even want to mention the word "superuser", or then again we might not.

How about using 'root' for the user/account and super-user for the privileges? The 'root' user has super-user privileges all the time and the normal user can get those privileges via (the) sudo (mechanism).

FTR: that *is* a slight diversion from what's said here: https://www.debian.org/releases/bookworm/amd64/ch06s03.en.html#di-user-setup

Whatever terminology we use, I think it's important that we use the same terminology in both the d-i screens and the Trixie Installation Guide.
Updating the Installation Guide should probably be done separately?

Cheers,
Diederik
-----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZehmcwAKCRDXblvOeH7b bnOwAP0TUzu7lZY6xYMz/4/O4l4CTWjwRbNyruJgt0rgxdKs1AD9GNN07/3x+mTY pSXVnSeAbWRSmT7UpeOPpdLDw02kIAs=
=BmqB
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Justin B Rye <justin.byam.rye@gmail.com> writes:

...

Post-coffee (also fixing that wobbly indent):

Some account needs to have system administrative privileges. The
password/passphrase for that account should be something that
cannot be guessed.
.
To allow direct password-based access via the 'root' account, you
can set the password/passphrase for that account here.
.
Alternatively, you can lock root's password
by leaving this setting empty, and
instead use the system's initial user account
(which will be set up in the next step)
to become root. This will be enabled for you
by adding that user to the 'sudo' group.
.
Note: what you type here will be hidden (unless you select to show it).

I like that version better than mine, so commited it[1], and re-ran the
test to give a screenshot:

https://openqa.debian.net/tests/239766#step/passwords/1

Maybe instead of saying "use the system's initial user account to
become root" it should say "allow the system's initial user account
to gain administrative privileges"? I'm not sure. Oh, and we might
even want to mention the word "superuser", or then again we might not.

I think Diederik's suggestion of using 'root' for the account and
'super-user' for the privileges might be the way to go.

Cheers, Phil.

[1] https://salsa.debian.org/installer-team/user-setup/-/merge_requests/7/diffs?commit_id=2668d06de4f2de4735404a0671ecfb33f7bbd159
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXogsAACgkQ0EujoAEl 1cCTOA//Q21KjDq69LBk73xa34C0PyMlrgDmxjdD7oM+fqurCxUU2CG5mbx88B6B G0lUaqZJYOYvMMi076sOrOdtoulB/w43L9XSXjnamdcVL0pmWhHNJQ5Vr+cZBlHt snQjoC2FhigYMhCe78bLoT4m+cQoIAnzZNrZ8CRQ97x03zF8cv0Dy+Yy/a3Vkojw d9ePSGDz8lbj08w+jl8W1YMc09T4QbK3x55jkhsI/R0RyXIK4fp+6IIjgroAM2pX N/WuX7zjDT0btKOPnaCnPMGmqC15C/dGYp1AvUnLzLNz/1COFlOM6Qo3xkelJOkK qlTcN3q5p0JTOkceeDN8Chk/JENG+eVwwDQnUd0rC7Kzz83WpnJOkc8ZOUMfXDVv 4AUcHjFskMs7Kaq0fXVPiFkUtBTIoQBuAEUSYLFSyXuS4uKXdyVIRXS16sx4amcz yLL+k9IKsBy+9rIez0szSebnY/OZdS0be9f1ut+oI9aR6l0+xOItr9CsgPhlsX6R rq1E8IVuQ9YFhFvJx317MpsA9gS2mafoQw8+lg+y3kB5oVkZMsVn0ImpMfz/dxRL 6blQc+bRbvGJP0jNu5c5PsGwzyKadK9BuZj14U8uofEmi7YdRARKwsyrXD/yS43e 5iG2DceyoCIN85pRRqtXWrKQBlEclVZRbkbBSa3nqS675ZbcXqM=DT+Z
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

Hi,

Am 5. März 2024 20:44:52 MEZ schrieb Philip Hands <phil@hands.com>:

BTW I don't know much about how the translation side of things works,
but given that there are many ways of getting the fine detail of this to
be incorrect in various ways, is there a standard method for adding
hints for translators, and should that be done?

Such hints for translators can be added to the templates file, as in <https://salsa.debian.org/installer-team/apt-setup/-/blob/master/debian/apt-setup-udeb.templates?ref_type=heads#L3>
They will then end up in translator's po files.


Do you have some specific sentence in mind, which deserves a
special hint?
I noticed that my English is not good enough to formulate such details.


Holger


--
Sent from /e/ OS on Fairphone3

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Hi,

Am 7. März 2024 08:50:25 MEZ schrieb Justin B Rye <justin.byam.rye@gmail.com>: >Philip Hands wrote:

Maybe instead of saying "use the system's initial user account to
become root" it should say "allow the system's initial user account
to gain administrative privileges"? I'm not sure. Oh, and we might
even want to mention the word "superuser", or then again we might not.

I think Diederik's suggestion of using 'root' for the account and
'super-user' for the privileges might be the way to go.

Looking at what I end up with after another couple of rounds of
fiddling with it I'm not sure if it's doing quite what you asked for,
but you still might want it so here it is:

- Some account needs to have system administrative privileges. The
- password/passphrase for that account should be something that
- cannot be guessed.
+ Some account needs to be available with administrative super-user
+ privileges. The password/passphrase for that account should be
+ something that cannot be guessed.
.
To allow direct password-based access via the 'root' account, you
can set the password/passphrase for that account here.
.
- Alternatively, you can lock root's password
+ Alternatively, you can lock the root account's password
by leaving this setting empty, and
instead use the system's initial user account
(which will be set up in the next step)
- to become root. This will be enabled for you
- by adding that user to the 'sudo' group.
+ to gain administrative privileges. This will be enabled for you by
+ adding that initial user to the 'sudo' group.
.
Note: what you type here will be hidden (unless you select to show it).

All the above looks like an improvement to me.


Holger


--
Sent from /e/ OS on Fairphone3

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Justin B Rye <justin.byam.rye@gmail.com> writes:

Philip Hands wrote:

Maybe instead of saying "use the system's initial user account to
become root" it should say "allow the system's initial user account
to gain administrative privileges"? I'm not sure. Oh, and we might
even want to mention the word "superuser", or then again we might not.

I think Diederik's suggestion of using 'root' for the account and
'super-user' for the privileges might be the way to go.

Looking at what I end up with after another couple of rounds of
fiddling with it I'm not sure if it's doing quite what you asked for,
but you still might want it so here it is:

Thanks for that.

- Some account needs to have system administrative privileges. The
- password/passphrase for that account should be something that
- cannot be guessed.
+ Some account needs to be available with administrative super-user
+ privileges. The password/passphrase for that account should be
+ something that cannot be guessed.
.
To allow direct password-based access via the 'root' account, you
can set the password/passphrase for that account here.
.
- Alternatively, you can lock root's password
+ Alternatively, you can lock the root account's password
by leaving this setting empty, and
instead use the system's initial user account
(which will be set up in the next step)
- to become root. This will be enabled for you
- by adding that user to the 'sudo' group.
+ to gain administrative privileges. This will be enabled for you by
+ adding that initial user to the 'sudo' group.
.
Note: what you type here will be hidden (unless you select to show it).

That can be seen here:

https://salsa.debian.org/philh/user-setup/-/commit/a684977100e6746725372f8294f271f890c50430
&
https://openqa.debian.net/tests/240580#step/passwords/1

I think I prefer the previous version better for some reason.

IMO Having the 'password/passphrase' throughout makes it awkward to
read, and actually we've got one place where it still just says
password, and fixing that would make it slightly worse IMO.

How about dropping the passphrase stuff?

https://salsa.debian.org/philh/user-setup/-/commit/7c8dd1bd9d5c8596e7b8f82a19a075e0a5572ed7
&
https://openqa.debian.net/tests/240582#step/passwords/1

which I think is more readable (and is probably fine now that we've
dropped the stuff about password selection which could be read as
suggesting that a password is expected to be a single word).

Cheers, Phil.
--
Philip Hands -- https://hands.com/~phil

--=-=-Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3/FBWs4yJ/zyBwfW0EujoAEl1cAFAmXrX/AACgkQ0EujoAEl 1cBMAg/5AY130HOq8poEPdgiA7BTzfGIaX4Asug8VOuVsNz+lkHUKECcP0dXJ1au 1PSFegn3TZi+vvgiBPPnhQpzpNtetzjxvt1zAwlw7qMU47p0DIP5GjpqS1FeyLKB CQYgNSExujmFN0DAMLY7MkTs1P4H4b4CzO21m7Nrd5Ittxx2/baQtTw5eVRRSMQW AQb21RT85lwjhUb0QAgmTtyqv+EHEwJJjFjQdWGW6EFIlJHTKZ6IBYnYwNW4tvv7 mY6byioyX/v67kT3+57qTKjPGeSBrvpMi6NK1P8R+JZb5UHuR47q+No/CW2TTZtz xjxas+zKxoalzqaJJ7Zc2vJtXn0SJqM7sXVF1cIq/2uatEtjFkq4MnmHuECQYy/S nZusVJGEkvUpWajDJV+smky+zecQwu4aARvdGiWy2iR8jG2Ibm2W7M2TYntSR59V JfqhPoYcMNQFDdjY6JH4LnyEXa0oRdDsqLWWNvXXyEG4WJ88BtV5mcRNdK8+ZWHZ bne6LgrBjVvGCJZBGzuzD4DpnHHOvI2vKIEWm9MAtzp1fJOBt1zEPGlGXgLUT+sF SU1MJ/UsdKUGiVdscwRpMiF3/LkXLl6WuDxDz6HeHtPOJGPZdnCqPowq2ML9woMG vbZ9IzP9DipjDAz+gSigJUgxdik+wY+b178yIpUKH5x4WKoMot8=WAsD
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gatewa

XPost: linux.debian.maint.boot

On Friday, 8 March 2024 19:58:56 CET Philip Hands wrote:

IMO Having the 'password/passphrase' throughout makes it awkward to
read, and actually we've got one place where it still just says
password, and fixing that would make it slightly worse IMO.

How about dropping the passphrase stuff?

I agree with dropping it. It does look odd and it'll likely raise (more) questions then it answers. And most/all people are familiar with password.

Explaining passwords/passphrases is better suited to some educational
resource.

-----BEGIN PGP SIGNATURE-----

iHUEABYIAB0WIQT1sUPBYsyGmi4usy/XblvOeH7bbgUCZeuMqAAKCRDXblvOeH7b brRGAQDB22KxDkvGUtrE7wiRSTLal/r5n5CDBu0HY+3jAbqrAAD/Xw5Dfxdup0sG 8qgMu03mLGhZJSfHkZZlYwi9I2nMPQw=
=AWHm
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Hi,

Am 8. März 2024 19:58:56 MEZ schrieb Philip Hands <phil@hands.com>:

IMO Having the 'password/passphrase' throughout makes it awkward to
read, and actually we've got one place where it still just says
password, and fixing that would make it slightly worse IMO.

How about dropping the passphrase stuff?

https://salsa.debian.org/philh/user-setup/-/commit/7c8dd1bd9d5c8596e7b8f82a19a075e0a5572ed7

Well, the idea was, to mention that 'passphrase' thing one time in the dialog.

Now having it at all places is indeed not strictly an improvement.
Feel free to drop it.


Holger




--
Sent from /e/ OS on Fairphone3

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)