[Samba] Samba 3.0.24 handling LDAP responses incorrectly
Ryan Steele
rsteele at archer-group.com
Mon Apr 7 18:03:32 GMT 2008
Volker Lendecke wrote:
> On Fri, Apr 04, 2008 at 04:47:56PM -0400, John Drescher wrote:
>
>> I think the bug/problem is that this message is being displayed
>> instead of "Password could not be changed for user
>> tester: Constraint violation" and "does not pass required number of
>> strength checks (1 of 3)."
>>
>
> Current 3.2 has the attached code. Might help for you.
>
> Volker
>
Adding:
#if defined(LDAP_CONSTRAINT_VIOLATION)
if (rc == LDAP_CONSTRAINT_VIOLATION)
return NT_STATUS_PASSWORD_RESTRICTION;
#endif
...to pdb_ldap.c didn't seem to change the behavior at all. I suspect
it's because LDAP_CONSTRAINT_VIOLATION isn't defined anywhere in my
3.0.24 source, though I could certainly be wrong. I'm grabbing the
latest source from git to see where that's defined, but if anybody wants
to head me off at the pass with the information, it's certainly welcome.
Thanks,
Ryan
More information about the samba
mailing list