Mail archive
alpine-devel

Re: [alpine-devel] [PATCH 8/8] main/syslinux: hooks for bootloader password

From: Dubiousjim <dubiousjim_at_gmail.com>
Date: Sat, 29 Jun 2013 16:51:50 -0400

On Fri, Jun 28, 2013 at 04:54:53PM +0200, Natanael Copa wrote:
> On Thu, 27 Jun 2013 03:32:21 -0400
> Dubiousjim <dubiousjim_at_gmail.com> wrote:

> > + install -D -m755 utils/sha1pass "$pkgdir"/usr/sbin/sha1pass || return 1
>
> I had a look at this script but i don't like it.
> ...
> 2) it requires that password is specified on command line. I think it
> should at least optionally be able to read it from stdin.

In the instructions I wrote for generating a SHA1 password by hand
(though not the MD5 password), I'm still guilty of complaint #2. The
problem is that openssl can read data from stdin, but you'd have to be
sure the user prefixed the salt manually. Or you'd have to write a shell
script and do `echo -stty; read pass; echo stty` and then echo the salt
and the pass to openssl; or use Bash or C or something else.

I'm not going to do any of that right now.

-- 
Dubiousjim
dubiousjim_at_gmail.com
---
Unsubscribe:  alpine-devel+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-devel+help_at_lists.alpinelinux.org
---
Received on Sat Jun 29 2013 - 16:51:50 UTC