This morning one of our employees came into us noting that W2K said
their password was invalid. It seemed to have changed on it's own. At
that time LM/NT passwords in LDAP were the following:
EE899DB29A5F1658AAD3B435B51404EE
62D7C4362BDB83A95BB28244BD9AF321
I made a note of them, and then changed the password using smbpasswd, to
the same thing that it should have already been. At this point the LM/NT
passwords were:
EE899DB29A5F1658AAD3B435B51404EE
27AC53B3162CD6F069D360FF31849D05
Notice the LM password is not different, only the NT portion had changed
itself. This has happened twice before, but previously our staff just
reset the password and went on with life. I caught this one. I have no
logs, because I don't know what to be looking for. It has to have
changed itself in the last 12 hours, however, I don't know when to place
that.
Any ideas what could cause this to happen? Anything I could look for?
It's going to become a problem if it starts happening more frequently.
Thank you.
I am running Samba 3.0.0.
--
Jerry Haltom <jhaltom@feedbackplusinc.com>
Feedback Plus, Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url :
http://lists.samba.org/archive/samba/attachments/20040113/66468285/attachment.bin
