From 1ca77cdf866c18390875168922361c1f6fd13ccf Mon Sep 17 00:00:00 2001
From: A Holt <holta@users.noreply.github.com>
Date: Tue, 18 Oct 2022 19:02:19 -0400
Subject: [PATCH] Clarify useless pop-up risk on RasPiOS like Mint, due to sudo
 -n

---
 roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2 | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2 b/roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2
index 97728045c..356789433 100755
--- a/roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2
+++ b/roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2
@@ -28,7 +28,8 @@ check_user_pwd() {
     # This also helps avoid parsing the (NEW) 4th sub-field in $y$j9T$SALT$HASH
 
     # 2022-09-21 #3368: Sets field2 to "" if sudo -n fails to read /etc/shadow
-    # 2022-10-18 #3404: Redirect stderr to /dev/null, to avoid Mint pop-up
+    # 2022-10-18 #3404: Redirect stderr to /dev/null, as RasPiOS might one day
+    # force an annoying pop-up, as Mint did (due to sshpwd-profile-iiab.sh.j2)
     field2=$(sudo -n grep "^$1:" /etc/shadow 2>/dev/null | cut -d: -f2)
     [[ $(perl -e "print crypt('$2', '$field2')") == $field2 ]]