Public bug reported: from the smb.conf man page:
check password script (G) The name of a program that can be used to check password complexity. The password is sent to the program's standard input. The program must return 0 on a good password, or any other value if the password is bad. In case the password is considered weak (the program does not return 0) the user will be notified and the password change will fail. Problem: The script does not get executed. Whatever is configured here, the script is not being touched and so the option is useless. The execution of this script should be logged with log level 5 but it isn't. It also does not give an error if the script cannot be found. Testparm warns, however, if you misspell the check password option. This has been working two months ago when I was testing it, but now that the password policy must be enforced it is not. Description: Ubuntu 10.04.3 LTS Release: 10.04 samba: Installed: 2:3.4.7~dfsg-1ubuntu3.7 Candidate: 2:3.4.7~dfsg-1ubuntu3.7 Version table: *** 2:3.4.7~dfsg-1ubuntu3.7 0 500 http://dz.archive.ubuntu.com/ubuntu/ lucid-updates/main Packages 500 http://security.ubuntu.com/ubuntu/ lucid-security/main Packages 100 /var/lib/dpkg/status 2:3.4.7~dfsg-1ubuntu3 0 500 http://dz.archive.ubuntu.com/ubuntu/ lucid/main Packages ** Affects: samba (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/844774 Title: Samba ignores “check password script” option To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/844774/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs