[Samba] Samba 2.2.5 Security Bug?

jra at dp.samba.org jra at dp.samba.org
Tue Oct 8 17:38:21 GMT 2002

On Tue, Oct 08, 2002 at 10:31:00AM -0700, Herb Lewis wrote:
> According to the man page you use smbpasswd -n <username> to set the
> NO PASSWORDXXXXX password. Empty passwords give a different password.
> It looks like this was intentional but I'm not sure why.

No password is different from the password "" (an empty password).
"" is actually hashed as an empty string and is a valid password,
NO PASSWORD is  treated differently.


More information about the samba mailing list