#4033 Encrypted password shown in "Valid until"

0.91
closed-fixed
5
2011-12-11
2011-12-11
No

On the PostgreSQL "Edit Users" page, a user with an MD5 password is displayed with the encrypted password as a text input for "Valid until".

The "Password" inputs are okay. They're shown with the "Don't change" radio button selected, an unselected "Set to" and an empty new password text field.

The user is properly stored in the pg_shadow database table. Since the "passwd" and "valuntil" columns are next to each other, I suspect that an array index, used to populate the edit form, is off by one. If it is an index problem, that brings up another issue - it really ought to be using column names, and not indicies, to populate the form.

Discussion

  • Jamie Cameron

    Jamie Cameron - 2011-12-11

    Thanks for pointing this out - Webmin currently assumes that the columns in pg_shadow have a certain ordering and count, but this must have changed in the latest PostgreSQL release. I will fix this in the next Webmin release..

     
  • Jamie Cameron

    Jamie Cameron - 2011-12-11
    • status: open --> closed-fixed
     

Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

JavaScript is required for this form.





No, thanks