Bug 7961 - SWAT change password interface (-P option) does not honor 'check password script'
SWAT change password interface (-P option) does not honor 'check password scr...
Status: RESOLVED INVALID
Product: Samba 3.2
Classification: Unclassified
Component: SWAT
3.2.5
x64 Linux
: P3 normal
: ---
Assigned To: Karolin Seeger
Samba QA Contact
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2011-02-18 10:48 UTC by Marco Gaiarin
Modified: 2011-02-18 11:26 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marco Gaiarin 2011-02-18 10:48:25 UTC
The SWAT simplified interface used to change password, eg the 'swat -P', does not use the 'check password script' option in smb.conf, so users that change their password via web/SWAT interface can bypass password quality assurance checks.
[i don't know if this is a general SWAT problem or triggerend only by the way of the -P option...]

PS: please, remember to implement %u variables parsing as in https://bugzilla.samba.org/show_bug.cgi?id=5018 .

Thanks.
Comment 1 Marco Gaiarin 2011-02-18 11:26:19 UTC
Aarrgghh!!!

I'm a stupid, please ignore/close this bug (if i'm not able to do so), all works as expected.

Sorry.