debian-cis/etc/conf.d/3.3_bootloader_password.cfg

# Configuration for script of same name
status=disabled

###### Grub configuration example :
#~ # id
#uid=0(root) gid=0(root) groups=0(root)
#~ # ls /etc/grub.d/01_users -l
#-rwxr-xr-x 1 root root 390 Apr 11 11:04 /etc/grub.d/01_users
#
# ~ # cat /etc/grub.d/01_users
##!/bin/sh
#
## Grub password file
#
#cat << EOF
#set superusers="osp"
#password FOR_GRUB # this is a drity hack for chmod 400 by grub-mkconfig
#password_pbkdf2 osp grub.pbkdf2.sha512.10000.28AC55867740A5F1820853347EEFE3CCC67D19540BE8ACCE5E354A18DDD8D4A48AACC5F9FCAE08593B05D0E131568456F02A44F1D01C7E194635CE664410F885.07A8B0B957098D4A13B6CE77A62431945A98DCF20313AFAC86346957E6F67827B252F3BF395D82E8C25036AA89AE6BA13F946523FB02F6C3A605B3B312658D6E
#EOF