I suppose we could also move all logic over to be key based rather than password based. So there the installer would need to learn how to fetch a public ssh key from somewhere and install it (in instsys). The installer password screen would need to learn a new "key" option which could then take that downloaded key as default. I guess that might even be the more future proof solution, albeit more difficult for users and more effort.