[PATCH] Implement the check password script functionality in AD
Bob Campbell
bobcampbell at catalyst.net.nz
Sun Jun 19 23:40:41 UTC 2016
Hi,
I'm an intern at Catalyst working with Garming Sam, learning Samba.
Attached is a patch to implement the check password functionality in AD,
which includes a test using sed matching as a password script. It acts
much like it does in source3, however it runs your script as root and
doesn't allow any macro substitutions.
The test exists in the CHGDCPASS environment, which now no longer uses
the AD complexity checks and just disallows a fixed unacceptable
password. This lets us check the script over all the protocols.
Please review and push if acceptable.
Thanks,
Bob Campbell
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-check-password-script-Allow-AD-to-execute-these-scri.patch
Type: text/x-patch
Size: 9893 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20160620/fb32886f/0001-check-password-script-Allow-AD-to-execute-these-scri.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0002-selftest-add-check-password-script-test.patch
Type: text/x-patch
Size: 7101 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20160620/fb32886f/0002-selftest-add-check-password-script-test.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0003-check-password-script-Avoid-hardcoding-password-in-t.patch
Type: text/x-patch
Size: 3848 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20160620/fb32886f/0003-check-password-script-Avoid-hardcoding-password-in-t.bin>
More information about the samba-technical
mailing list