Public bug reported: Binary package hint: samba
Samba defaults to "unix password sync" off, but this package is installed by default, and ignores that setting and sync's on it's own initiative. I see NO reason why this should be installed by default. Instead there could be a comment in the default smb.conf shipped, that says "instead of using unix password sync consider package X". I strongly suspect there's a security consern aswell here, I REALLY don't want my password auto sync'ed to multiple places by default. I have sha512 encryption on /etc/shadow for a reason. I haven't had a user enabled in samba for ages, because it kept resetting the password. To find the solution I looked in samba logs, and samba configuration files, and found nothing to explain this behavior. Then I stumbled over this thread to find the solution to what was going on: http://ubuntuforums.org/showthread.php?t=827088 ** Affects: samba (Ubuntu) Importance: Undecided Status: New -- libpam-smbpass syncs unix passwords when "unix password sync" is off https://bugs.launchpad.net/bugs/609092 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
