Project

General

Profile

Feature #2127

Support newer hash schemes for root passwords

Added by Dominic Cleal over 6 years ago. Updated 11 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Dmitri Dolguikh
Category:
Security
Target version:
1.7.0
Difficulty:
Triaged:
Bugzilla link:
1052257
Pull request:
https://github.com/theforeman/foreman/pull/1736
Team Backlog:
Fixed in Releases:
Found in Releases:

Description

Currently Foreman hashes root passwords with MD5. This should be more flexible, e.g. SHA-1, SHA-2, perhaps depending on the operating system. Note that GRUB2 also uses PBKDF, see #2103.

Related issues

Related to Foreman - Bug #2069: (encrypted) root passwords are world readableClosed2009-10-07
Related to Foreman - Feature #2103: GRUB2 password support, PBKDF hashingNew2013-01-04
Related to Foreman - Bug #7655: Host update for grub pass on first report received after upgradeNew
Related to Foreman - Bug #7731: Default OS root password hash algorithm should be SHA-2Duplicate2014-09-29
Has duplicate Foreman - Bug #1171: support sha512 password hashing in RHEL6 / CentOS6Duplicate2011-09-17
Has duplicate Foreman - Feature #5585: Support non-md5 root passwordDuplicate2014-05-06

Associated revisions

Revision 2d7f0315 (diff)
Added by Dmitri Dolguikh over 4 years ago

fixes #2127: added support for root password hashing other than MD5

Revision 52e5d8d9 (diff)
Added by Dominic Cleal over 4 years ago

refs #2127 - instantiate exception and pass i18n arg correctly

Revision e5ee7335 (diff)
Added by Dominic Cleal over 4 years ago

refs #2127 - add password_hash to API

History

#1 Updated by Ohad Levy about 6 years ago

  • Target version changed from 1.2.0 to 1.3.0

#2 Updated by Lukas Zapletal over 5 years ago

  • Target version changed from 1.3.0 to 1.4.0

#3 Updated by Greg Sutcliffe over 5 years ago

  • Target version deleted (1.4.0)

#5 Updated by Dominic Cleal about 5 years ago

  • Has duplicate Feature #5585: Support non-md5 root password added

#6 Updated by Dominic Cleal about 5 years ago

  • Bugzilla link set to https://bugzilla.redhat.com/show_bug.cgi?id=1052257

#7 Updated by Ohad Levy almost 5 years ago

  • Target version set to 1.7.5

#8 Updated by Dmitri Dolguikh almost 5 years ago

  • Target version changed from 1.7.5 to 1.7.4

#9 Updated by Dmitri Dolguikh over 4 years ago

  • Status changed from New to Assigned
  • Assignee set to Dmitri Dolguikh

#10 Updated by Dominic Cleal over 4 years ago

  • Status changed from Assigned to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/1736 added
  • Pull request deleted ()

#11 Updated by Dmitri Dolguikh over 4 years ago

  • Target version changed from 1.7.4 to 1.7.3

#12 Updated by Anonymous over 4 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100

#13 Updated by Dominic Cleal over 4 years ago

  • Related to Bug #7655: Host update for grub pass on first report received after upgrade added

#14 Updated by Dominic Cleal over 4 years ago

  • Related to Bug #7731: Default OS root password hash algorithm should be SHA-2 added

#15 Updated by Dominic Cleal over 4 years ago

  • Legacy Backlogs Release (now unused) set to 21

Also available in: Atom PDF