1 files changed, 6 insertions, 6 deletions
diff --git a/documentation/dev-manual/securing-images.rst b/documentation/dev-manual/securing-images.rst
index e5791d3d6d..f4b528e559 100644
--- a/documentation/dev-manual/securing-images.rst
+++ b/documentation/dev-manual/securing-images.rst
@@ -107,18 +107,18 @@ Considerations Specific to the OpenEmbedded Build System
 You can take some steps that are specific to the OpenEmbedded build
 system to make your images more secure:
-  Ensure "debug-tweaks" is not one of your selected
+-  Ensure that "allow-empty-password", "allow-root-login", or
-   :term:`IMAGE_FEATURES`.
+   "empty-root-password" are not one of your selected :term:`IMAGE_FEATURES`.
   When creating a new project, the default is to provide you with an
-   initial ``local.conf`` file that enables this feature using the
+   initial ``local.conf`` file that enables these features using the
   :term:`EXTRA_IMAGE_FEATURES`
   variable with the line::
-      EXTRA_IMAGE_FEATURES = "debug-tweaks"
+      EXTRA_IMAGE_FEATURES = "allow-empty-password empty-root-password allow-root-login"
-   To disable that feature, simply comment out that line in your
+   To disable these features, simply comment out that line in your
   ``local.conf`` file, or make sure :term:`IMAGE_FEATURES` does not contain
-   "debug-tweaks" before producing your final image. Among other things,
+   any of these features before producing your final image. Among other things,
   leaving this in place sets the root password as blank, which makes
   logging in for debugging or inspection easy during development but
   also means anyone can easily log in during production.

diff --git a/documentation/dev-manual/securing-images.rst b/documentation/dev-manual/securing-images.rst index e5791d3d6d..f4b528e559 100644 --- a/documentation/dev-manual/securing-images.rst +++ b/documentation/dev-manual/securing-images.rst
@@ -107,18 +107,18 @@ Considerations Specific to the OpenEmbedded Build System
107	You can take some steps that are specific to the OpenEmbedded build	107	You can take some steps that are specific to the OpenEmbedded build
108	system to make your images more secure:	108	system to make your images more secure:
109		109
110	- Ensure "debug-tweaks" is not one of your selected	110	- Ensure that "allow-empty-password", "allow-root-login", or
111	:term:`IMAGE_FEATURES`.	111	"empty-root-password" are not one of your selected :term:`IMAGE_FEATURES`.
112	When creating a new project, the default is to provide you with an	112	When creating a new project, the default is to provide you with an
113	initial ``local.conf`` file that enables this feature using the	113	initial ``local.conf`` file that enables these features using the
114	:term:`EXTRA_IMAGE_FEATURES`	114	:term:`EXTRA_IMAGE_FEATURES`
115	variable with the line::	115	variable with the line::
116		116
117	EXTRA_IMAGE_FEATURES = "debug-tweaks"	117	EXTRA_IMAGE_FEATURES = "allow-empty-password empty-root-password allow-root-login"
118		118
119	To disable that feature, simply comment out that line in your	119	To disable these features, simply comment out that line in your
120	``local.conf`` file, or make sure :term:`IMAGE_FEATURES` does not contain	120	``local.conf`` file, or make sure :term:`IMAGE_FEATURES` does not contain
121	"debug-tweaks" before producing your final image. Among other things,	121	any of these features before producing your final image. Among other things,
122	leaving this in place sets the root password as blank, which makes	122	leaving this in place sets the root password as blank, which makes
123	logging in for debugging or inspection easy during development but	123	logging in for debugging or inspection easy during development but
124	also means anyone can easily log in during production.	124	also means anyone can easily log in during production.