The Samba-Bugzilla – Bug 1705
Minimum password not sent to windows workstation
Last modified: 2005-08-24 10:25:48 UTC
I have a Samba 3.0.3 system setup with LDAP.
I can set the "min password length" in smb.conf and the
system will respect that but when changing the password
from win2k and giving it a smaller password than set
it always displays "password must be a minimum of 5 characters"
It will display this even if "min password length" is set
to 7. You won't actually be able to have a password less than
7 but it confuses the hell out of our users.
Are there any messages in the log file when this happens? You will need to set
your 'debug level' in smb.conf to at least 1.
debug level = 10 is probably the best idea
This is caused by the default value of the account_policy "min password length"
(5) that perfectly collides with lp_min_passwd_length. Both value's are checked
after each other during a password change (actually causing a problematic
situation, if one these values is less then the default value of 5).
The client itself queries the password-policy-settings just for the
account-policy and thus displays "5".
As a quick workaround you could set the account poliy to the same value as your
smb.conf option via
pdbedit -P "min password length" -C 7
Tim, shouldn't we remove lp_min_passwd_length completly?
George, any news on this? Did setting the account-policy with pdbedit helped you?
gd, mark 'min password length' as deprecated in loadparm.c. Then remove it's actual use in the
code. Then go ahead and close this bug. My rule is that no feedback in over 30 days
== automatic close (at your discetion).
The initial reported gave me positive feedback on my solution proposed in
comment #7. Just marked "min password length" as depreciated now, People should
use the corresponding Account Policy instead.
all we're doing on this one for now.
sorry for the same, cleaning up the database to prevent unecessary reopens of bugs.