> Hi,
>
> I have attached a patch to change the default password in jabberd during
> setup.
> You had code for that in 2009 already but then you did some changes on
> how you write the config for jabberd and during that change, the code
> for setting the password to a random string got lost.
>
> The attached patch fixes that.
>From jabberd's post install script:
if [ "$1" -eq "1" ]; then
/sbin/chkconfig --add jabberd
#replace default passwords, yet another hack
export NEWPASS=$( dd if=/dev/urandom bs=20 count=1 2>/dev/null \
| sha1sum | awk '{print $1}' )
cd /etc/jabberd
/bin/sed -i -f- router-users.xml router.xml <<END
s,<secret>secret</secret>,<secret>$NEWPASS</secret>,g
END
/bin/sed -i -f- *.xml <<END
s,<pass>secret</pass>,<pass>$NEWPASS</pass>,g
END
fi
We don't try to set the router password (or secret if you will) to anything,
since it already should be set to a random string after the jabberd package
is installed (it also doesn't change during jabberd upgrade).
Are you aware of any scenario when this wouldn't be happenning? Or to put
my question differently -- what is the motivation behind this patch?
-MZ
_______________________________________________
Spacewalk-devel mailing list
Spacewalk-devel@redhat.com
https://www.redhat.com/mailman/listinfo/spacewalk-devel
