** Changed in: grub-installer (Debian)
Status: Unknown => Fix Released
--
installer: grub password included as cleartext in menu.lst
https://bugs.launchpad.net/bugs/42020
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-b
Fixed in Debian and merged into hardy:
grub-installer (1.27) unstable; urgency=low
[ Romain Perier ]
* Password was sent in clear-text into menu.lst; use 'grub --batch'
with md5crypt alternative to correct it. Closes: #442443.
[...]
-- Otavio Salvador <[EMAIL PROTECTED]> Sat, 27 Oct 20
I've attached a *tentative* patch, which should make encrypted-passwords the
default option, by adding a new debconf parameter
("grub-installer/hash-password") which controls whether the manually-entered
password is passed through grub's md5crypt function before entry in the
menu.lst.
If approp
