I have a branch with a patch for xenial, but I'm afraid the pam-mysql
source package is very much broken there. The build process de-applies
the patches, then builds the binaries, then applies the patches, and
finishes. Not even the two existing patches are applied in that package,
much less my
** Changed in: pam-mysql (Ubuntu)
Assignee: (unassigned) => Andreas Hasenack (ahasenack)
** Changed in: pam-mysql (Ubuntu)
Status: Confirmed => In Progress
** Changed in: pam-mysql (Ubuntu)
Importance: Undecided => High
--
You received this bug notification because you are a
Opened upstream bug against mysql explaining the situation.
https://bugs.mysql.com/bug.php?id=86357
** Bug watch added: MySQL Bug System #86357
http://bugs.mysql.com/bug.php?id=86357
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to
Debian stretch isn't affected. There, libmariadbclient.so.18 exports a
my_make_scrambled_password() that produces the correct/expected hexified
hash. Which I wonder if it's what libmysqlclient.so.18 did (artful is at
.20).
--
You received this bug notification because you are a member of Ubuntu
** Description changed:
artful libpam-mysql-0.8.0-1
pam_mysql, when crypt=2 is set in its configuration, it expects the
password to be hashed according to the server-side PASSWORD() SQL
function. From its README:
2 (or "mysql") = Use MySQL PASSWORD() function. It is possible that
** Description changed:
- Ubuntu 16.04 x64 and Ubuntu 16.04 x86
- VSFTPD Version: vsftpd_3.0.3-3ubuntu2.debian
+ artful libpam-mysql-0.8.0-1
- When trying to use a fixed version of libpam-mysql (the one's I patched
- here: https://bugs.launchpad.net/ubuntu/+source/pam-mysql/+bug/1574900)
-
** Summary changed:
- vsftpd 500 oops stack smashing detected - Ubuntu 16.04
+ my_make_scrambled_password() is not a replacement for
make_scrambled_password()
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to the bug report.