Double hash the password directly in the install script

7 years ago · a5733508ae
parent c8e1e6dc8a
commit a5733508ae
1 changed files with 3 additions and 1 deletions
--- a/install/basic-install.sh
+++ b/install/basic-install.sh
@ -1413,7 +1413,9 @@ main() {
    pw=""
    if [[ $(grep 'WEBPASSWORD' -c /etc/pihole/setupVars.conf) == 0 ]] ; then
        pw=$(tr -dc _A-Z-a-z-0-9 < /dev/urandom | head -c 8)
-        /usr/local/bin/pihole -a -p "${pw}"
+        hash=$(echo -n ${pw} | sha256sum | sed 's/\s.*$//')
+        hash=$(echo -n ${hash} | sha256sum | sed 's/\s.*$//')
+        echo "WEBPASSWORD=${hash}" >> ${setupVars}
    fi
  fi