From 93383ded9d64a4e000b70955bb81b6c8cb029e63 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@robotics.uk.to>
Date: Wed, 23 Nov 2016 12:52:09 +0000
Subject: [PATCH] Additional security guidance

---
 src/freedombone-sec | 17 ++++++++++++++++-
 1 file changed, 16 insertions(+), 1 deletion(-)

diff --git a/src/freedombone-sec b/src/freedombone-sec
index ad5eae5d..61ff7972 100755
--- a/src/freedombone-sec
+++ b/src/freedombone-sec
@@ -692,7 +692,22 @@ function store_passwords {
     sel=$?
     case $sel in
         0)
-            ${PROJECT_NAME}-pass --enable yes
+            if [ -f /root/.nostore ]; then
+                read_config_param "MY_USERNAME"
+                if [ ! -f /home/$MY_USERNAME/.ssh/authorized_keys ]; then
+                    dialog --title $"Store Passwords" \
+                           --msgbox $"\nYou should first enable key based ssh login to improve security" 8 60
+                    return
+                fi
+                if [[ $SSH_PASSWORDS == 'yes' ]]; then
+                    dialog --title $"Store Passwords" \
+                           --msgbox $"\nYou should disable ssh passwords to improve security" 8 60
+                    return
+                fi
+                ${PROJECT_NAME}-pass --enable yes
+                dialog --title $"Store Passwords" \
+                       --msgbox $"\nUser passwords will now be stored on the system" 8 60
+            fi
             return
             ;;
         1)