[Bug 609092] [NEW] libpam-smbpass syncs unix passwords when "unix password sync" is off
Anders Aagaard
aagaande at gmail.com
Fri Jul 23 11:15:40 BST 2010
Public bug reported:
Binary package hint: samba
Samba defaults to "unix password sync" off, but this package is
installed by default, and ignores that setting and sync's on it's own
initiative. I see NO reason why this should be installed by default.
Instead there could be a comment in the default smb.conf shipped, that
says "instead of using unix password sync consider package X".
I strongly suspect there's a security consern aswell here, I REALLY
don't want my password auto sync'ed to multiple places by default. I
have sha512 encryption on /etc/shadow for a reason.
I haven't had a user enabled in samba for ages, because it kept resetting the password. To find the solution I looked in samba logs, and samba configuration files, and found nothing to explain this behavior. Then I stumbled over this thread to find the solution to what was going on:
http://ubuntuforums.org/showthread.php?t=827088
** Affects: samba (Ubuntu)
Importance: Undecided
Status: New
--
libpam-smbpass syncs unix passwords when "unix password sync" is off
https://bugs.launchpad.net/bugs/609092
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in ubuntu.
More information about the Ubuntu-server-bugs
mailing list