misc/117812: passwd: incapable of changing LDAP passowrds using
passwd in FreeBSD 7.0
O. Hartmann
ohartman at zedat.fu-berlin.de
Sun Nov 4 04:30:04 PST 2007
>Number: 117812
>Category: misc
>Synopsis: passwd: incapable of changing LDAP passowrds using passwd in FreeBSD 7.0
>Confidential: no
>Severity: critical
>Priority: high
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Sun Nov 04 12:30:03 UTC 2007
>Closed-Date:
>Last-Modified:
>Originator: O. Hartmann
>Release: FreeBSD 7.0-BETA2
>Organization:
FU Berlin/Nugg.ad Predictive Behavioral Targeting
>Environment:
>Description:
trying to change passwords for users located in an OpenLDAP server fails due to the incapability of passwd() changing passwords via PAM! Also with chpass() and chsh() which seems not to take PAM into account.
LDAP/OpenLDAP and PAM is now very common over NIS/YP and I can not understand why FreeBSD as server system is not taking this into account.
>How-To-Repeat:
Try to change password using passwd while user is located in OpenLDAP. try to change login shell and passowrd via chsh() and chpass() and you'll fail also.
>Fix:
For passwd() there is a patch around (simply commenting out something in the checking chain), but it seems to be qucik and dirty.
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list