Project

General

Profile

Actions

Bug #5468

closed

Root password being filled by Chrome, changing it on host edit

Added by Dominic Cleal about 10 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Web Interface
Target version:
Difficulty:
Triaged:
Fixed in Releases:
Found in Releases:

Description

"Recently" (last week or two?), Chrome has started filling in the root password field again on the host edit page, which means your host's new password becomes "changeme" or whatever you happen to have saved.

It appears this is a deliberate feature, even though we set autocomplete=off since #2607:

http://www.theregister.co.uk/2014/04/09/chrome_makes_new_password_grab_in_version_34/
http://www.techno360.in/how-to-enable-autocompleteoff-feature-in-chrome-34/

Actions #1

Updated by Dominic Cleal almost 10 years ago

http://code.google.com/p/chromium/issues/detail?id=352347 is the main bug report, which while being depressing reading, does appear to be moving in the right direction.

Actions #2

Updated by Lukas Zapletal almost 10 years ago

This is annoying and I wonder if we are able to get rid of this by adding some random suffix to the password field name.

Actions #3

Updated by Dominic Cleal almost 10 years ago

I don't think it cares about the field name (e.g. it fills in a password from the user field into one called "root_pass"). Some say you can add hidden fields to have it fill those in instead, but eugh.

Actions #4

Updated by Dominic Cleal almost 10 years ago

  • Status changed from New to Ready For Testing
  • Assignee set to Lukas Zapletal
  • Target version set to 1.7.5
  • Pull request https://github.com/theforeman/foreman/pull/1699 added
  • Pull request deleted ()
Actions #5

Updated by Anonymous almost 10 years ago

  • Target version changed from 1.7.5 to 1.7.4
Actions #6

Updated by Anonymous almost 10 years ago

  • Target version changed from 1.7.4 to 1.7.3
Actions #7

Updated by Shlomi Zadok almost 10 years ago

  • Assignee changed from Lukas Zapletal to Shlomi Zadok
Actions #8

Updated by Dominic Cleal almost 10 years ago

  • Pull request https://github.com/theforeman/foreman/pull/1761 added
  • Pull request deleted (https://github.com/theforeman/foreman/pull/1699)
Actions #9

Updated by Dominic Cleal almost 10 years ago

  • Target version changed from 1.7.3 to 1.7.2
Actions #10

Updated by Shlomi Zadok almost 10 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions #11

Updated by Daniel Lobato Garcia almost 10 years ago

  • Translation missing: en.field_release set to 21
Actions

Also available in: Atom PDF