Project

General

Profile

Feature #3725

Make default root password more explicit and configurable at install time

Added by Dominic Cleal over 5 years ago. Updated 10 months ago.

Status:
Closed
Priority:
Urgent
Category:
Security
Target version:
Difficulty:
Triaged:
Bugzilla link:
Pull request:
Team Backlog:
Fixed in Releases:
Found in Releases:

Description

Foreman has a documented default root password configured of "123123", but while this is configurable, it would be improved by making this more obvious or configurable at installation time. Perhaps an installer option or a "first boot" type setup for Foreman.


Related issues

Related to Foreman - Feature #3272: Separate internal admin account from user admin accountsClosed2013-10-16
Related to Foreman - Bug #4167: Password length verification doesn't workClosed2014-01-23
Related to Foreman - Bug #4977: setting root_pass to empty string from the settings page breaks foremanResolved2014-03-31
Related to Foreman - Feature #5663: Configure the default root password policy in 1.5New2014-05-11

Associated revisions

Revision c4bfd47f (diff)
Added by Stephen Benjamin about 5 years ago

fixes #3725, #4167 - root password validations, remove default password

History

#1 Updated by Dominic Cleal over 5 years ago

  • Related to Feature #3272: Separate internal admin account from user admin accounts added

#2 Updated by Dominic Cleal over 5 years ago

We could remove the default password entirely, and require via model validation that the user provides one when creating a host (if not supplied via settings or a host group). We then suggest they might want to set this under settings or the host group.

#3 Updated by Dominic Cleal over 5 years ago

  • Priority changed from Normal to Urgent

#4 Updated by Stephen Benjamin about 5 years ago

  • Assignee set to Stephen Benjamin

#5 Updated by Dominic Cleal about 5 years ago

  • Status changed from New to Ready For Testing
  • Target version set to 1.9.2

#6 Updated by Stephen Benjamin about 5 years ago

  • Related to Bug #4167: Password length verification doesn't work added

#7 Updated by Dominic Cleal about 5 years ago

  • Legacy Backlogs Release (now unused) set to 4

#8 Updated by Anonymous about 5 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100

#9 Updated by Dominic Cleal about 5 years ago

  • Related to Bug #4977: setting root_pass to empty string from the settings page breaks foreman added

#10 Updated by Dominic Cleal almost 5 years ago

  • Related to Feature #5663: Configure the default root password policy in 1.5 added

Also available in: Atom PDF