When I accessed http://localhost/piranha' I got the message
'the user piranha initially has no password set'
That's wrong, the initial password for user piranha is 'piranha'
Reassigned to kbarrett
Per agreement with Phil, reassigned to him for response.
Ok, this was down to a packaging mistake.
The initial package does indeed have a distributed passwd file in
The fix is of course to nullify the passwd using
htpasswd -c -b /home/html/htdocs/piranha/secure/password ""
This was a packaging mistake
The newer rpms of the piranha GUI no not carry the password file but instead
look for it, if found they do nothing, else they create the passwd file with a
null passwd field
NOTE: please see errata RHSA-2000:014-02 (Piranha web GUI exposure)