Bug 500178
Summary: | RFE: enable sha512 or sha256 from autoconfig-tui | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 5 | Reporter: | Jim Perrin <james.l.perrin> |
Component: | authconfig | Assignee: | Tomas Mraz <tmraz> |
Status: | CLOSED WONTFIX | QA Contact: | BaseOS QE <qe-baseos-auto> |
Severity: | medium | Docs Contact: | |
Priority: | low | ||
Version: | 5.3 | ||
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2009-05-11 14:37:15 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Jim Perrin
2009-05-11 14:22:18 UTC
The authconfig-tui tool is deprecated and no new features should be added there. Please use either authconfig --passalgo=sha256 --update or authconfig-gtk GUI tool. What will be replacing authconfig-tui, since this is what's listed in /etc/rc.sysinit when using 'touch /.unconfigured' from /etc/rc.sysinit # Configure machine if necessary. if [ -f /.unconfigured ]; then if [ -x /usr/bin/rhgb-client ] && /usr/bin/rhgb-client --ping ; then chvt 1 fi if [ -x /usr/bin/system-config-keyboard ]; then /usr/bin/system-config-keyboard fi if [ -x /usr/bin/passwd ]; then /usr/bin/passwd root fi if [ -x /usr/sbin/system-config-network-tui ]; then /usr/sbin/system-config-network-tui fi if [ -x /usr/sbin/timeconfig ]; then /usr/sbin/timeconfig fi if [ -x /usr/sbin/authconfig-tui ]; then /usr/sbin/authconfig-tui --nostart fi if [ -x /usr/sbin/ntsysv ]; then /usr/sbin/ntsysv --level 35 fi If authconfig-tui is deprecated, then what will be replacing it in this context? The default for password hashes in RHEL-6 will be SHA256 or SHA512 so there will be no need to set it up in the post install phase with authconfig-tui. On the other hand although the authconfig-tui is deprecated it is not going to be removed completely for probably a long time. For RHEL6 that's fine, but what about RHEL5, which carries support until 2014 or so? Not to be antagonistic, but if it's not going away, and is referenced by other config tools (firstboot, rc.sysinit, etc) shouldn't it either be updated to support the auth mechanisms that authconfig supports or at least notify users that it's deprecated, and they should use something else (ala nslookup)? |