[elbe-devel] [PATCH v1 03/15] dbsfed.xsd: target: add element for hashed root password

Holger Dengler holger at hdengler.de
Wed Jun 8 22:39:46 CEST 2022


Add element "passwd_hashed" for specifying a hashed password for root.
Plain-text passwords in build-output (e.g. elbe_base.xml or source.xml)
are critical with regard to security. The use of hashed passwords
reduces the risk of unintentional disclosures of plain-text passwords,
while keeping the capability of rebuilds from source.xml.

Signed-off-by: Holger Dengler <holger at hdengler.de>
---
 schema/dbsfed.xsd | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/schema/dbsfed.xsd b/schema/dbsfed.xsd
index 38642e3ac..e3c6f7fa6 100644
--- a/schema/dbsfed.xsd
+++ b/schema/dbsfed.xsd
@@ -987,6 +987,13 @@
           </documentation>
         </annotation>
       </element>
+      <element name="passwd_hashed" type="rfs:string" minOccurs="1" maxOccurs="1">
+        <annotation>
+          <documentation>
+            root password (hashed)
+          </documentation>
+        </annotation>
+      </element>
       <element name="console" type="rfs:string" minOccurs="0" maxOccurs="1">
         <annotation>
           <documentation>
-- 
2.36.1



More information about the elbe-devel mailing list