[debian-edu-commits] debian-edu/ 01/03: Adapt to a code injection prevention fix in GOsa (starting with Debian package gosa 2.7.4+reloaded2-1+deb8u2): Don't mention the sambaHashHook parameter in gosa.conf anymore (as hashed passwords now have to be base64 encoded). Already existing gosa.conf files on deployed servers should drop the sambaHashHook from the gosa.conf file, as well, once gosa is updated to the above referenced GOsa version.

Mike Gabriel sunweaver at debian.org
Mon Jan 11 16:45:33 UTC 2016 

This is an automated email from the git hooks/post-receive script.

sunweaver pushed a commit to branch master
in repository debian-edu-config.

commit e681ab08311e2e860936604f311b09cfa06c6805
Author: Mike Gabriel <mike.gabriel at das-netzwerkteam.de>
Date:   Mon Jan 11 17:23:14 2016 +0100

    Adapt to a code injection prevention fix in GOsa (starting with Debian package gosa 2.7.4+reloaded2-1+deb8u2): Don't mention the sambaHashHook parameter in gosa.conf anymore (as hashed passwords now have to be base64 encoded). Already existing gosa.conf files on deployed servers should drop the sambaHashHook from the gosa.conf file, as well, once gosa is updated to the above referenced GOsa version.
---
 debian/changelog   | 6 ++++++
 etc/gosa/gosa.conf | 1 -
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/debian/changelog b/debian/changelog
index 7f5d18c..8d4be82 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -62,6 +62,12 @@ debian-edu-config (1.819) UNRELEASED; urgency=low
   * GOsa: Add POSTLOCK and POSTUNLOCK hooks for GOsa password locking. These
     hook scripts (gosa-lock-user, gosa-unlock-user) take care of locking/
     unlocking the Kerberos part of user accounts. (Closes: #804207).
+  * Adapt to a code injection prevention fix in GOsa (starting with Debian
+    package gosa 2.7.4+reloaded2-1+deb8u2): Don't mention the sambaHashHook
+    parameter in gosa.conf anymore (as hashed passwords now have to be base64
+    encoded). Already existing gosa.conf files on deployed servers should drop
+    the sambaHashHook from the gosa.conf file, as well, once gosa is updated to
+    the above referenced GOsa version.
 
  -- Petter Reinholdtsen <pere at debian.org>  Sat, 16 May 2015 23:12:06 +0200
 
diff --git a/etc/gosa/gosa.conf b/etc/gosa/gosa.conf
index c5cbb85..16474bc 100644
--- a/etc/gosa/gosa.conf
+++ b/etc/gosa/gosa.conf
@@ -390,7 +390,6 @@
     passwordMinLength="5" 
     passwordMinDiffer="2" 
     passwordHook="" 
-    sambaHashHook='perl -MCrypt::SmbHash -e "print join(q[:], ntlmgen %password), $/;"'>
 
     <!-- Location definition -->
     <location name="Debian Edu" 

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/debian-edu/debian-edu-config.git

More information about the debian-edu-commits mailing list