Red Hat Bugzilla – Bug 9232
Null password badly processed
Last modified: 2008-05-01 11:37:54 EDT
After upgrade to RH6.1, I was not able to log on: my login was not
password-protected (Not a NW machine!). The system always asked for a
password and failed, whatever was the answer.
Since "nullok" was specified in the PAM file, it should have been working.
Hints for fix: My own investigations showed me that in the
libpwdb/interface/unix/user.c, a test is made for "strlen(storedpassword)
> 1" where the comments say " != 1"... The comment is right, since the
code redirects the null password processing to a non-existent shadow
After fixing as above and recompiling libpwd, the null password feature is
I may also suggest this bug affects the "passwd" command... check
assigned to nalin
... seems to be fixed in RedHat 6.2 with the new version of pwdb (the same way