izpack 5.1.2 Unattended Installations Using Records of Previous Sessions
18 views
Skip to first unread message
Bernd Längerich
Apr 16, 2018, 5:22:25 AM4/16/18
to izpack-dev
Hi all,
having migrated from 4.3.5 to 5.1.2, I saved the session data of a 5.1.2 linux console mode installation and then tried to replay it.
I found that the session record file misses all passwords. The entries are present in the file, but the value is always empty. Editing the file and inserting the passwords the automated install just runs fine.
Is this a security feature not mentioned in the documentation?
Bernd
having migrated from 4.3.5 to 5.1.2, I saved the session data of a 5.1.2 linux console mode installation and then tried to replay it.
I found that the session record file misses all passwords. The entries are present in the file, but the value is always empty. Editing the file and inserting the passwords the automated install just runs fine.
Is this a security feature not mentioned in the documentation?
Bernd
René Krell
Apr 16, 2018, 6:52:46 AM4/16/18
to izpack-dev
Hi Bernd,
Dne pondělí 16. dubna 2018 11:22:25 UTC+2 Bernd Längerich napsal(a):
exactly, this is a security feature.
You can explicitly change this bevior using the omitFromAuto option of the password <field>, see https://izpack.atlassian.net/wiki/x/ZIAH.
The attribute omitFromAuto is set true for password fields explicitly.
If you want to include passwords in a more secure way you might use the new "Mixed mode" - https://izpack.atlassian.net/wiki/x/AgCFAg and mappers for the passwords, for example to read them from external files with special permissions.
René
Dne pondělí 16. dubna 2018 11:22:25 UTC+2 Bernd Längerich napsal(a):
Bernd Längerich
Apr 17, 2018, 3:22:24 AM4/17/18
to izpack-dev
Hi René!
My reply somehow got stuck, so I try again using the google web interface...
My reply somehow got stuck, so I try again using the google web interface...
Am 16.04.2018 um 12:52 schrieb René Krell:
exactly, this is a security feature.You can explicitly change this bevior using the omitFromAuto option of the password <field>, see https://izpack.atlassian.net/wiki/x/ZIAH.The attribute omitFromAuto is set true for password fields explicitly.
Yes, this was the missing link. I
tried to find information in the FinishPanel as well as the
chapter on automated installations, but missed the field
definitions.
BTW: 5.1.2 is a great improvement for me, I had quite a lot issues with the outdated 4.3.5 (modified and fixed some issue for myself) and tried a while ago 5.0.x without much luck. Thank you very much for your work!
BTW: 5.1.2 is a great improvement for me, I had quite a lot issues with the outdated 4.3.5 (modified and fixed some issue for myself) and tried a while ago 5.0.x without much luck. Thank you very much for your work!
If you want to include passwords in a more secure way you might use the new "Mixed mode" - https://izpack.atlassian.net/wiki/x/AgCFAg and mappers for the passwords, for example to read them from external files with special permissions.
This will be one of the next steps, but at the moment I am quite
happy with a minor note on editing the XML file in our documentation, I'll pass the security feature to the user
:)
Thanks for the fast response and best regards
Bernd
Thanks for the fast response and best regards
Bernd
Bernd Laengerich
Apr 17, 2018, 4:04:09 PM4/17/18
to izpac...@googlegroups.com
Hi René!
Am 16.04.2018 um 12:52 schrieb René Krell:
exactly, this is a security feature.You can explicitly change this bevior using the omitFromAuto option of the password <field>, see https://izpack.atlassian.net/wiki/x/ZIAH.The attribute omitFromAuto is set true for password fields explicitly.
Yes, this was the missing link. I
tried to find information in the FinishPanel as well as the
chapter on automated installations, but missed the field
definitions.
BTW: 5.1.2 is a great improvement for me, I had quite a lot issues with the outdated 4.3.5 and tried a while ago 5.0.x without much luck. Thank you very much for your work!
BTW: 5.1.2 is a great improvement for me, I had quite a lot issues with the outdated 4.3.5 and tried a while ago 5.0.x without much luck. Thank you very much for your work!
If you want to include passwords in a more secure way you might use the new "Mixed mode" - https://izpack.atlassian.net/wiki/x/AgCFAg and mappers for the passwords, for example to read them from external files with special permissions.
This will be one of the next steps, but at the moment I am quite
happy with a minor note on editing the XML file in our documentation
:)
René Krell
Apr 18, 2018, 4:02:09 PM4/18/18
to izpac...@googlegroups.com
2018-04-16 13:23 GMT+02:00 Bernd Laengerich <dl...@gmx.de>:
Hi René!
Am 16.04.2018 um 12:52 schrieb René Krell:
exactly, this is a security feature.You can explicitly change this bevior using the omitFromAuto option of the password <field>, see https://izpack.atlassian.net/wiki/x/ZIAH.The attribute omitFromAuto is set true for password fields explicitly.
Yes, this was the missing link. I tried to find information in the FinishPanel as well as the chapter on automated installations, but missed the field definitions.
...
I updated the documentation and added the note about the password fields after reading your mail.
Thus, you couldn't find this explicitly :-)
Reply all
Reply to author
Forward
0 new messages