Bug 83436 - KUser does not set correct passwords.
KUser does not set correct passwords.
Status: CLOSED ERRATA
Product: Red Hat Linux
Classification: Retired
Component: kdeadmin (Show other bugs)
8.0
i386 Linux
medium Severity medium
: ---
: ---
Assigned To: Ngo Than
Ben Levenson
: Security
: 83437 (view as bug list)
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2003-02-04 02:41 EST by Joshua Schmidlkofer
Modified: 2007-04-18 12:50 EDT (History)
1 user (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2003-10-02 07:43:43 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Joshua Schmidlkofer 2003-02-04 02:41:51 EST
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.2.1) Gecko/20021130

Description of problem:
Load Kuser, modify a user's password, hit save.  It resets the user password to:
'!!'

diff the file from a backup:
--- /etc/shadow.prek    2003-02-03 22:44:40.000000000 -0800
+++ /etc/shadow 2003-02-03 22:46:52.000000000 -0800
@@ -37,8 +37,8 @@
 cyrus:!!:12031::::::
 jms:xxxxxxxxxxxxxxxxxx:12049:0:99999:7:::
 rigel:xxxxxxxxxxxxxxxxxx:12059:0:99999:7:::
-foo.bar:!!:12060:0:99999:7:::
+foo.bar:!!:12060:0:32767:7:::
 clamav:!!:12070:0:99999:7:::


Version-Release number of selected component (if applicable):


How reproducible:
Always

Steps to Reproduce:
1. Load kuser
2. change user password
3. hit save.
    

Actual Results:  --- /etc/shadow.prek    2003-02-03 22:44:40.000000000 -0800
+++ /etc/shadow 2003-02-03 22:46:52.000000000 -0800
@@ -37,8 +37,8 @@
 cyrus:!!:12031::::::
 jms:xxxxxxxxxxxxxxxxxx:12049:0:99999:7:::
 rigel:xxxxxxxxxxxxxxxxxx:12059:0:99999:7:::
-foo.bar:!!:12060:0:99999:7:::
+foo.bar:!!:12060:0:32767:7:::
 clamav:!!:12070:0:99999:7:::


Expected Results:  --- /etc/shadow.prek    2003-02-03 22:44:40.000000000 -0800
+++ /etc/shadow 2003-02-03 23:44:50.000000000 -0800
@@ -37,8 +37,8 @@
 cyrus:!!:12031::::::
 jms:xxxxxxxxxxxxxxxxxx:12049:0:99999:7:::
 rigel:xxxxxxxxxxxxxxxxxx:12059:0:99999:7:::
-foo.bar:!!:12060:0:99999:7:::
+foo.bar:$1$/hDD5hc6$RgYxokR4bR4RcbzT65E1C/:12087:0:32767:7:::
 clamav:!!:12070:0:99999:7:::


Additional info:

Hashes have been changed to protect the guilty.
Comment 1 Bill Nottingham 2003-02-19 23:52:17 EST
*** Bug 83437 has been marked as a duplicate of this bug. ***
Comment 2 Ngo Than 2003-03-12 17:12:02 EST
It's fixed in 3.0.5a-2, which will be released as erratta soon.
Comment 3 Mark J. Cox (Product Security) 2003-10-02 07:43:43 EDT
Was fixed on 2003-05-12 by
http://rhn.redhat.com/errata/RHSA-2003-002.html

Note You need to log in before you can comment on or make changes to this bug.