When I accessed http://localhost/piranha' I got the message 'the user piranha initially has no password set' That's wrong, the initial password for user piranha is 'piranha'
Reassigned to kbarrett
Per agreement with Phil, reassigned to him for response.
Ok, this was down to a packaging mistake. The initial package does indeed have a distributed passwd file in /home/html/htdocs/piranha/secure/password The fix is of course to nullify the passwd using htpasswd -c -b /home/html/htdocs/piranha/secure/password "" This was a packaging mistake The newer rpms of the piranha GUI no not carry the password file but instead look for it, if found they do nothing, else they create the passwd file with a null passwd field
NOTE: please see errata RHSA-2000:014-02 (Piranha web GUI exposure)