[Bug 844774] [NEW] Samba ignores “check password script” option
Sven Ehret
844774 at bugs.launchpad.net
Thu Sep 8 13:04:34 UTC 2011
Public bug reported:
from the smb.conf man page:
check password script (G)
The name of a program that can be used to check password complexity. The password is
sent to the program's standard input.
The program must return 0 on a good password, or any other value if the password is
bad. In case the password is considered weak (the program does not return 0) the user
will be notified and the password change will fail.
Problem: The script does not get executed. Whatever is configured here,
the script is not being touched and so the option is useless.
The execution of this script should be logged with log level 5 but it
isn't. It also does not give an error if the script cannot be found.
Testparm warns, however, if you misspell the check password option.
This has been working two months ago when I was testing it, but now that
the password policy must be enforced it is not.
Description: Ubuntu 10.04.3 LTS
Release: 10.04
samba:
Installed: 2:3.4.7~dfsg-1ubuntu3.7
Candidate: 2:3.4.7~dfsg-1ubuntu3.7
Version table:
*** 2:3.4.7~dfsg-1ubuntu3.7 0
500 http://dz.archive.ubuntu.com/ubuntu/ lucid-updates/main Packages
500 http://security.ubuntu.com/ubuntu/ lucid-security/main Packages
100 /var/lib/dpkg/status
2:3.4.7~dfsg-1ubuntu3 0
500 http://dz.archive.ubuntu.com/ubuntu/ lucid/main Packages
** Affects: samba (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/844774
Title:
Samba ignores “check password script” option
Status in “samba” package in Ubuntu:
New
Bug description:
from the smb.conf man page:
check password script (G)
The name of a program that can be used to check password complexity. The password is
sent to the program's standard input.
The program must return 0 on a good password, or any other value if the password is
bad. In case the password is considered weak (the program does not return 0) the user
will be notified and the password change will fail.
Problem: The script does not get executed. Whatever is configured
here, the script is not being touched and so the option is useless.
The execution of this script should be logged with log level 5 but it
isn't. It also does not give an error if the script cannot be found.
Testparm warns, however, if you misspell the check password option.
This has been working two months ago when I was testing it, but now
that the password policy must be enforced it is not.
Description: Ubuntu 10.04.3 LTS
Release: 10.04
samba:
Installed: 2:3.4.7~dfsg-1ubuntu3.7
Candidate: 2:3.4.7~dfsg-1ubuntu3.7
Version table:
*** 2:3.4.7~dfsg-1ubuntu3.7 0
500 http://dz.archive.ubuntu.com/ubuntu/ lucid-updates/main Packages
500 http://security.ubuntu.com/ubuntu/ lucid-security/main Packages
100 /var/lib/dpkg/status
2:3.4.7~dfsg-1ubuntu3 0
500 http://dz.archive.ubuntu.com/ubuntu/ lucid/main Packages
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/844774/+subscriptions
More information about the foundations-bugs
mailing list