[debian-edu-commits] debian-edu/ 03/05: Adapt to a code injection prevention fix in GOsa (starting with Debian package gosa 2.7.4+reloaded2-1+deb8u2): Don't mention the sambaHashHook parameter in gosa.conf anymore (as hashed passwords now have to be base64 encoded). Already existing gosa.conf files on deployed servers should drop the sambaHashHook from the gosa.conf file, as well, once gosa is updated to the above referenced GOsa version.

Mike Gabriel sunweaver at debian.org
Mon Jan 11 16:45:05 UTC 2016 

This is an automated email from the git hooks/post-receive script.

sunweaver pushed a commit to branch jessie
in repository debian-edu-config.

commit 1e803fd063c1fbfafba8ec8d96f62bd901f52c72
Author: Mike Gabriel <mike.gabriel at das-netzwerkteam.de>
Date:   Mon Jan 11 17:23:14 2016 +0100

    Adapt to a code injection prevention fix in GOsa (starting with Debian package gosa 2.7.4+reloaded2-1+deb8u2): Don't mention the sambaHashHook parameter in gosa.conf anymore (as hashed passwords now have to be base64 encoded). Already existing gosa.conf files on deployed servers should drop the sambaHashHook from the gosa.conf file, as well, once gosa is updated to the above referenced GOsa version.
---
 debian/changelog   | 6 ++++++
 etc/gosa/gosa.conf | 1 -
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/debian/changelog b/debian/changelog
index 7112015..4e5544f 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -27,6 +27,12 @@ debian-edu-config (1.818+deb8u1) UNRELEASED; urgency=low
   * GOsa: Add POSTLOCK and POSTUNLOCK hooks for GOsa password locking. These
     hook scripts (gosa-lock-user, gosa-unlock-user) take care of locking/
     unlocking the Kerberos part of user accounts. (Closes: #804207).
+  * Adapt to a code injection prevention fix in GOsa (starting with Debian
+    package gosa 2.7.4+reloaded2-1+deb8u2): Don't mention the sambaHashHook
+    parameter in gosa.conf anymore (as hashed passwords now have to be base64
+    encoded). Already existing gosa.conf files on deployed servers should drop
+    the sambaHashHook from the gosa.conf file, as well, once gosa is updated to
+    the above referenced GOsa version.
 
  -- Petter Reinholdtsen <pere at debian.org>  Sat, 16 May 2015 23:12:06 +0200
 
diff --git a/etc/gosa/gosa.conf b/etc/gosa/gosa.conf
index 0f67b41..5dc15e3 100644
--- a/etc/gosa/gosa.conf
+++ b/etc/gosa/gosa.conf
@@ -390,7 +390,6 @@
     passwordMinLength="5" 
     passwordMinDiffer="2" 
     passwordHook="" 
-    sambaHashHook='perl -MCrypt::SmbHash -e "print join(q[:], ntlmgen %password), $/;"'>
 
     <!-- Location definition -->
     <location name="Debian Edu" 

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/debian-edu/debian-edu-config.git

More information about the debian-edu-commits mailing list