[Samba] Samba 3.0.24 handling LDAP responses incorrectly

Ryan Steele rsteele at archer-group.com
Mon Apr 7 18:03:32 GMT 2008

Volker Lendecke wrote:
> On Fri, Apr 04, 2008 at 04:47:56PM -0400, John Drescher wrote:
>> I think the bug/problem is that this message is being displayed
>> instead of "Password could not be changed for user
>>   tester: Constraint violation" and "does not pass required number  of
>> strength checks (1 of 3)."
> Current 3.2 has the attached code. Might help for you.
> Volker

                        #if defined(LDAP_CONSTRAINT_VIOLATION)
                        if (rc == LDAP_CONSTRAINT_VIOLATION)
                                return NT_STATUS_PASSWORD_RESTRICTION;

...to pdb_ldap.c didn't seem to change the behavior at all.  I suspect
it's because LDAP_CONSTRAINT_VIOLATION isn't defined anywhere in my
3.0.24 source, though I could certainly be wrong.  I'm grabbing the
latest source from git to see where that's defined, but if anybody wants
to head me off at the pass with the information, it's certainly welcome.


More information about the samba mailing list