This is an automated email from the git hooks/post-receive script. x2go pushed a commit to branch feature/mysql-backend in repository x2goserver. commit 9affa6e93df712373a3bed10deeaf5ebbc8329c1 Author: Mihai Moldovan <ionic@ionic.de> Date: Fri Feb 23 22:36:44 2018 +0100 x2goserver/sbin/x2godbadmin: generate more secure user-level database passwords. --- debian/changelog | 2 ++ x2goserver/sbin/x2godbadmin | 4 ++-- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/debian/changelog b/debian/changelog index f6646a9..0d6b15e 100644 --- a/debian/changelog +++ b/debian/changelog @@ -74,6 +74,8 @@ x2goserver (4.1.0.1-0x2go1) UNRELEASED; urgency=medium database operation to be carried out first in order to trigger the move, but x2godbadmin does not actually use that account information (only generates it), so we should be in the clear. + - x2goserver/sbin/x2godbadmin: generate more secure user-level database + passwords. * debian/{control,compat}: + Bump DH compat level to 9. * debian/: diff --git a/x2goserver/sbin/x2godbadmin b/x2goserver/sbin/x2godbadmin index ae6a914..1173656 100755 --- a/x2goserver/sbin/x2godbadmin +++ b/x2goserver/sbin/x2godbadmin @@ -241,7 +241,7 @@ if ($Config->param("backend") eq 'postgres') } my $dbadmin=$Config->param("postgres.dbadmin"); my $x2goadmin="x2godbuser"; - my $x2goadminpass=`pwgen 8 1`; + my $x2goadminpass=`pwgen -s -c -n 32 1`; chomp ($x2goadminpass); my $db="x2go_sessions"; @@ -467,7 +467,7 @@ if ($Config->param("backend") eq 'postgres') print "The super-user \"root\" is not allowed to use X2Go\n"; return; } - $pass=`pwgen 8 1`; + $pass=`pwgen -s -c -n 32 1`; chomp($pass); my $sth=$dbh->prepare("REVOKE ALL PRIVILEGES ON sessions, used_ports, mounts FROM \"x2gouser_$user\""); -- Alioth's /home/x2go-admin/maintenancescripts/git/hooks/post-receive-email on /srv/git/code.x2go.org/x2goserver.git