Bug 83436

Summary: KUser does not set correct passwords.
Product: [Retired] Red Hat Linux Reporter: Joshua Schmidlkofer <menion>
Component: kdeadminAssignee: Than Ngo <than>
Status: CLOSED ERRATA QA Contact: Ben Levenson <benl>
Severity: medium Docs Contact:
Priority: medium    
Version: 8.0CC: mitr
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2003-10-02 11:43:43 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Joshua Schmidlkofer 2003-02-04 07:41:51 UTC
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.2.1) Gecko/20021130

Description of problem:
Load Kuser, modify a user's password, hit save.  It resets the user password to:
'!!'

diff the file from a backup:
--- /etc/shadow.prek    2003-02-03 22:44:40.000000000 -0800
+++ /etc/shadow 2003-02-03 22:46:52.000000000 -0800
@@ -37,8 +37,8 @@
 cyrus:!!:12031::::::
 jms:xxxxxxxxxxxxxxxxxx:12049:0:99999:7:::
 rigel:xxxxxxxxxxxxxxxxxx:12059:0:99999:7:::
-foo.bar:!!:12060:0:99999:7:::
+foo.bar:!!:12060:0:32767:7:::
 clamav:!!:12070:0:99999:7:::


Version-Release number of selected component (if applicable):


How reproducible:
Always

Steps to Reproduce:
1. Load kuser
2. change user password
3. hit save.
    

Actual Results:  --- /etc/shadow.prek    2003-02-03 22:44:40.000000000 -0800
+++ /etc/shadow 2003-02-03 22:46:52.000000000 -0800
@@ -37,8 +37,8 @@
 cyrus:!!:12031::::::
 jms:xxxxxxxxxxxxxxxxxx:12049:0:99999:7:::
 rigel:xxxxxxxxxxxxxxxxxx:12059:0:99999:7:::
-foo.bar:!!:12060:0:99999:7:::
+foo.bar:!!:12060:0:32767:7:::
 clamav:!!:12070:0:99999:7:::


Expected Results:  --- /etc/shadow.prek    2003-02-03 22:44:40.000000000 -0800
+++ /etc/shadow 2003-02-03 23:44:50.000000000 -0800
@@ -37,8 +37,8 @@
 cyrus:!!:12031::::::
 jms:xxxxxxxxxxxxxxxxxx:12049:0:99999:7:::
 rigel:xxxxxxxxxxxxxxxxxx:12059:0:99999:7:::
-foo.bar:!!:12060:0:99999:7:::
+foo.bar:$1$/hDD5hc6$RgYxokR4bR4RcbzT65E1C/:12087:0:32767:7:::
 clamav:!!:12070:0:99999:7:::


Additional info:

Hashes have been changed to protect the guilty.

Comment 1 Bill Nottingham 2003-02-20 04:52:17 UTC
*** Bug 83437 has been marked as a duplicate of this bug. ***

Comment 2 Than Ngo 2003-03-12 22:12:02 UTC
It's fixed in 3.0.5a-2, which will be released as erratta soon.

Comment 3 Mark J. Cox 2003-10-02 11:43:43 UTC
Was fixed on 2003-05-12 by
http://rhn.redhat.com/errata/RHSA-2003-002.html