2 passwords in sencha-12.0 | TurnKey GNU/Linux

You are here

tian lan - Wed, 2013/07/17 - 12:25

hi~

I've recently found 2 passwords in the source code of sencha-12.0.

one is "I7aUlKKVtAUececg" in turnkey-sencha-12.0-squeeze-x86-xen\etc\mysql\debian.cnf

the other is "ZeoJDU8l6a7X" in turnkey-sencha-12.0-squeeze-x86-xen\etc\phpmyadmin\config-db.php

is this a security bug?

Forum:

Support

Tags:

security

Add new comment

Inithooks handle secret regeneration

Alon Swartz - Wed, 2013/07/17 - 15:11

TurnKey Inithooks handle secret regeneration on firstboot very early in the boot process, so the services aren't running yet so there shouldn't even be a window of vulnerability.

As for the passwords you mentioned, they are handled in 20regen-mysql-secrets and 20regen-pmapass

thanks for your quick

tian lan - Wed, 2013/07/17 - 15:26

thanks for your quick reply~~~

best wishes！

tian lan

Add new comment

form.antibot { display: none !important; } You must have JavaScript enabled to use this form.

Main menu

User menu

You are here

Inithooks handle secret regeneration

thanks for your quick

Add new comment

Plain text

Search form

You are here

Inithooks handle secret regeneration

thanks for your quick

Add new comment

Plain text