Re: create password in postinst
Daniel Knabl wrote:
> ask the user for a password via debconf (store in $CLEARPASS)
> and then do HASH=`mkpasswd -S 35348090 -H md5 $CLEARPASS` and
> afterwards the usual sed -e "s/default/"$HASH"/;" ...
No, that's not ok. First off, any "funny" characters in the password
will cause errors. Second, and probably more important, any user running
'ps' will be able to read the plain-text password.
If you want to use mkpasswd, read about its -P and -s options. Pipe the
password to it. [But don't use /bin/echo for that; same problem...] Not
quite sure how to pull that off in sh, maybe someone will have
suggestions...
Reply to: