Package: smbldap-tools
Version: 0.9.2-3
Severity: important
If you change an user password using smbldap-passwd the
shadowLastChange attribute is not updated, so if you have password
aging active authentication will suddenly stop to work, and in a not
so easy to detect way.
The following patch should solve the problem:
--- smbldap-passwd 2006-11-11 01:01:17.000000000 +0000
+++ /usr/sbin/smbldap-passwd 2006-11-11 01:49:55.000000000 +0000
@@ -237,1 +237,1 @@
}
# Update 'userPassword' field
+# and 'shadowLastChange'
+
+my $date2=time;
+$date2=int($date2/86400);
my $modify = $ldap_master->modify ( "$dn",
changes => [
- replace => [userPassword =>
"$hash_password"]
+ replace => [userPassword =>
"$hash_password"],
+ replace => [shadowLastChange =>
"$date2"]
]
);
$modify->code && warn "Unable to change password : ", $modify->error ;
-- System Information:
Debian Release: 4.0
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-1-k7
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Versions of packages smbldap-tools depends on:
ii libcrypt-smbhash-perl 0.12-1 generate LM/NT hash of a password
ii libdigest-sha1-perl 2.11-2 NIST SHA-1 message digest algorith
ii libio-socket-ssl-perl 1.01-1 Perl module implementing object or
ii libnet-ldap-perl 1:0.33-2 A Client interface to LDAP servers
ii libunicode-maputf8-perl 1.11-2 Perl module for conversing between
ii perl 5.8.8-7 Larry Wall's Practical Extraction
smbldap-tools recommends no packages.
-- no debconf information
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
