search for: pdb_changed

.... But the second bug has carried through in the sam_account_from_delta() function: 208 if (memcmp(r->ntpassword.hash, zero_buf, 16) != 0) { 209 sam_pwd_hash(r->rid, r->ntpassword.hash, lm_passwd, 0); 210 pdb_set_lanman_passwd(account, lm_passwd, PDB_CHANGED); 211 } 212 213 if (memcmp(r->lmpassword.hash, zero_buf, 16) != 0) { 214 sam_pwd_hash(r->rid, r->lmpassword.hash, nt_passwd, 0); 215 pdb_set_nt_passwd(account, nt_passwd, PDB_CHANGED); If you look closely you'll see that the nt has...

...> DOS chars). This allows us to match Win2k, which > does not store a LM hash for these passwords (which > would reduce the effective password length to 14 */ > > if (!pdb_set_lanman_passwd (sampass, NULL, PDB_CHANGED)) > return False; > } else { > if (!pdb_set_lanman_passwd (sampass, new_lanman_p16, PDB_CHANGED)) > return False; > } > ... > > Is the password greater that 14 characters ? If so, looks like...

...; > > > does not store a LM hash for these passwords (which > > > > > would reduce the effective password length to 14 */ > > > > > > > > > > if (!pdb_set_lanman_passwd (sampass, NULL, PDB_CHANGED)) > > > > > return False; > > > > > } else { > > > > > if (!pdb_set_lanman_passwd (sampass, new_lanman_p16, PDB_CHANGED)) > > > > > return False; > > &gt...

Dear samba team, I have a lot of hobby projects including old PCs. I wanted to hook up a Win3.11 machine to my current Arch-Linux Workstation running samba 4.9.4. I have used the following configuration: [global] workgroup = HOMEBASE netbios name = Orcane wins support = Yes client signing = No domain master = No lanman auth = Yes log file = /var/log/samba/%m.log max log size = 50 name

...long' passwords (> 14 DOS chars). This allows us to match Win2k, which does not store a LM hash for these passwords (which would reduce the effective password length to 14 */ if (!pdb_set_lanman_passwd (sampass, NULL, PDB_CHANGED)) return False; } else { if (!pdb_set_lanman_passwd (sampass, new_lanman_p16, PDB_CHANGED)) return False; } ... Is the password greater that 14 characters ? If so, looks like we won't store it.

...DOS chars). This allows us to match Win2k, which > > does not store a LM hash for these passwords (which > > would reduce the effective password length to 14 */ > > > > if (!pdb_set_lanman_passwd (sampass, NULL, PDB_CHANGED)) > > return False; > > } else { > > if (!pdb_set_lanman_passwd (sampass, new_lanman_p16, PDB_CHANGED)) > > return False; > > } > > ... > > > > Is the password great...

...must be updated (if mapped gid is the user's primary group gid) */ + if (pass->pw_gid == gid) { + if (string_sid) { /* String specified, use it */ + pdb_set_group_sid_from_string(sam_pwent, string_sid, PDB_CHANGED); + } + else { /* no string specified, must compute the RID */ + pdb_set_group_sid_from_rid(sam_pwent, pdb_gid_to_group_rid(pass->pw_gid), PDB_CHANGED); + } + +...

...is allows us to match Win2k, which > > > does not store a LM hash for these passwords (which > > > would reduce the effective password length to 14 */ > > > > > > if (!pdb_set_lanman_passwd (sampass, NULL, PDB_CHANGED)) > > > return False; > > > } else { > > > if (!pdb_set_lanman_passwd (sampass, new_lanman_p16, PDB_CHANGED)) > > > return False; > > > } > > > ... > > &g...

...\n"); > ??????????????????????????????return -1; > ??????????????????????} > ??????????????????????sid_copy(&u_sid, get_global_sam_sid()); > ??????????????????????sid_append_rid(&u_sid, u_rid); > ??????????????} > ??????????????pdb_set_user_sid (sam_pwent, &u_sid, PDB_CHANGED); > ??????} > ??????if (group_sid) { > ??????????????DOM_SID g_sid; > ??????????????if (!string_to_sid(&g_sid, group_sid)) { > ??????????????????????/* not a complete sid, may be a RID, try building a > SID */ > ??????????????????????int g_rid; > ?????????????????????? &...

...>pass_last_set_time) equals nil, it returns zero. So we are up to three way's of preventing password changes in general. Now following some 3 stange lines of code: if (sampass->pass_can_change_time == get_time_t_max() && pdb_get_init_flags(sampass, PDB_CANCHANGETIME) == PDB_CHANGED) return sampass->pass_can_change_time; Here (again, unneccessarily) the time is checked against get_time_t_max and it's checked wether the flag that the sambaPwdCanChange time was changed (which doesn't makes much sense to me at all, because this line will never be reached, at...

...us to match Win2k, which >>>> does not store a LM hash for these passwords (which >>>> would reduce the effective password length to 14 */ >>>> >>>> if (!pdb_set_lanman_passwd (sampass, NULL, PDB_CHANGED)) >>>> return False; >>>> } else { >>>> if (!pdb_set_lanman_passwd (sampass, new_lanman_p16, PDB_CHANGED)) >>>> return False; >>>> } >>>>...