Comment 5 for bug 363153

This doesnt appear that it would provide the expectetd result. You are
tacking the "" into the user password rather than wrapping it in it. I would
think that anywhere that uses the self.passwd would need to wrapped in "".
This is the similar thing I changed in the VNC handler.

-Nick

On Mon, Apr 27, 2009 at 5:45 PM, barney_1 <email address hidden> wrote:

> Looking at the problem it seems that user input strings (ie: passwords)
> need to be encapsulated in double quotes in order to protect special
> characters like ampersands (&).
>
> For instance, I'm looking in the ubiquity package source code:
> scripts/mythbuntu/mythbuntu-install.py and we see the password read in:
>
> self.passwd=self.db.get('passwd/user-password')
>
> Subsequently, self.passwd is then passed in several functions throughout
> the script. Can't this be protected if we change the readin of the
> password to include double quotes? For example:
>
> self.passwd='\"'+self.db.get('passwd/user-password')+'\"'
>
> Is this the concept correct, and if so, how do I test the ubiquity
> package after making the changes?
>
> --
> Mythbuntu Install hangs at 90% due to & in password
> https://bugs.launchpad.net/bugs/363153
> You received this bug notification because you are a member of Mythbuntu
> Developers, which is subscribed to Mythbuntu.
>