severity 291124 normal thank you
* Klaus Ade Johnstad ([EMAIL PROTECTED]) [050118 13:40]: > Package:webmin-ldap-user-simple > Version: 1.3-20 > Severity:critical > When I upgrade debian-edu-config to 0.394-1.desa2004021, some new ldap > schemas are introduced . The way webmin-ldap-user-simple handles these > new schemas is with an error message that tells the user to do > something that breaks his system. > > When upgrading this is the message that webmin-ldap-user-simple gives > the user: > <p>Failed to update ldap admin passwd in samba.<br>This function is > turned off for security reasons.</p><p>Please set the password for your > samba -'ldap admin dn' via 'smbpasswd -w yourpassword'"</p> > Error; User account not created > > When running a 'smbpasswd -w yourpassword' users are reporting that > their windows machines in samba no longer authenticate against ldap. > > The proper way seems is to restart ldap. this bug does not apply to debian but only to debian-edu. debian-edu released a security update for samba, upgrading it from version 3.06 to 3.010. In version 3.07 samba schema changes were included. Changing the samba schemas without restarting slapd caused slapd to not return expected values when queried about certain samba releated entries or attributes. Writing these samba attributes could corrupt the database. All this is unrelated to this package. One such faulty read or write could occure when this package tried to update or create user entries with samba attributes. in that case the above error message could be displayed. The admin that acted uppon it then currupted the ldap backend further. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
