Project

General

Profile

Actions
Copy link

Bug #5468

closed

Root password being filled by Chrome, changing it on host edit

Added by Dominic Cleal almost 10 years ago. Updated almost 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Shlomi Zadok
Category:
Web Interface
Target version:
1.7.0
Difficulty:
Triaged:
Bugzilla link:
Pull request:
https://github.com/theforeman/foreman/pull/1761
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

"Recently" (last week or two?), Chrome has started filling in the root password field again on the host edit page, which means your host's new password becomes "changeme" or whatever you happen to have saved.

It appears this is a deliberate feature, even though we set autocomplete=off since #2607:

http://www.theregister.co.uk/2014/04/09/chrome_makes_new_password_grab_in_version_34/
http://www.techno360.in/how-to-enable-autocompleteoff-feature-in-chrome-34/

Actions
Copy link
 #1

Updated by Dominic Cleal over 9 years ago

http://code.google.com/p/chromium/issues/detail?id=352347 is the main bug report, which while being depressing reading, does appear to be moving in the right direction.

Actions
Copy link
 #2

Updated by Lukas Zapletal over 9 years ago

This is annoying and I wonder if we are able to get rid of this by adding some random suffix to the password field name.

Actions
Copy link
 #3

Updated by Dominic Cleal over 9 years ago

I don't think it cares about the field name (e.g. it fills in a password from the user field into one called "root_pass"). Some say you can add hidden fields to have it fill those in instead, but eugh.

Actions
Copy link
 #4

Updated by Dominic Cleal over 9 years ago

  • Status changed from New to Ready For Testing
  • Assignee set to Lukas Zapletal
  • Target version set to 1.7.5
  • Pull request https://github.com/theforeman/foreman/pull/1699 added
  • Pull request deleted ()
Actions
Copy link
 #5

Updated by Anonymous over 9 years ago

  • Target version changed from 1.7.5 to 1.7.4
Actions
Copy link
 #6

Updated by Anonymous over 9 years ago

  • Target version changed from 1.7.4 to 1.7.3
Actions
Copy link
 #7

Updated by Shlomi Zadok over 9 years ago

  • Assignee changed from Lukas Zapletal to Shlomi Zadok
Actions
Copy link
 #8

Updated by Dominic Cleal over 9 years ago

  • Pull request https://github.com/theforeman/foreman/pull/1761 added
  • Pull request deleted (https://github.com/theforeman/foreman/pull/1699)
Actions
Copy link
 #9

Updated by Dominic Cleal over 9 years ago

  • Target version changed from 1.7.3 to 1.7.2
Actions
Copy link
 #10

Updated by Shlomi Zadok over 9 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions
Copy link
 #11

Updated by Daniel Lobato Garcia over 9 years ago

  • translation missing: en.field_release set to 21
Actions
Copy link

Also available in: Atom PDF