This issue has sat incomplete for more than 60 days now. I'm going to
close it as invalid. Please feel free re-open if this is still an issue
for you. Thank you.
** Changed in: grub2 (Ubuntu)
Status: Incomplete => Invalid
--
You received this bug notification because you are a member of
This release of Ubuntu is no longer receiving maintenance updates. If
this is still an issue on a maintained version of Ubuntu please let us
know.
** Changed in: grub2 (Ubuntu)
Status: Confirmed => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Bugs,
This guide to Grub2 password protection references the fix in post #11.
https://help.ubuntu.com/community/Grub2/Passwords#Superuser_.26_Password_Designation_.28Required.29
set superusers=root
export superusers
password_pbkdf2 root ...
However, in their example, instead of placing
I confirm this issue on 12.04.2 LTS server amd64. This affects command
line and entry editing in submenu as well as protecting entries with
`--users` as any entry in submenu meant to be protected is freely
available.
The fix from #11 works fine, except the login/password is also required
to
According to a Fedora bug report, see below, exporting the `superusers`
variable seems to fix it.
https://bugzilla.redhat.com/show_bug.cgi?id=836259
Concretely, all you need to do in your custom `01_users` script is:
set superusers=root
export superusers
password_pbkdf2 root ...
This bug is not related with grub.d scripts nor 'Previous Linux
versions' submenu. GRUB does not propagate the superusers variable to
any submenu.
I think that is preferable to set a local variable by menu and submenu
instead of a global variable. In Debian/Ubuntu, no superusers variable
is
It is not needed to set again the user's passwords. The workaround works
simply defining 'superusers' variable into submenus.
Example:
submenu Previous Linux versions {
set superusers='xxuser_namexx'
menuentry 'Ubuntu, mit Linux 2.6.37-12-generic' --class ubuntu --class
gnu-linux --class gnu
The question isn't how to do the work-around!
It must be implemented inside the script 10_linux (or other one), so
it's a fixed part independent of the users knowledge.
It is right to use/set the definition of users only!
--
You received this bug notification because you are a member of
** Summary changed:
- grub pbkdf2-function hints
+ authorisation not applied to submenus
** Changed in: grub2 (Ubuntu)
Status: Incomplete = Confirmed
** Changed in: grub2 (Ubuntu)
Importance: Undecided = High
--
You received this bug notification because you are a member of Ubuntu
