an existing hash for sambaNTPassword is removed and replaced by a default hash when th samba tab is added to an existong account with posix enabled
an existing hash for sambaNTPassword is removed and replaced by a default hash when th samba tab is added to an existong account with posix enabled
Description
an existing hash for sambaNTPassword is removed and replaced by a default hash when th samba tab is added to an existong account with posix enabled
Distribution Name and Version
Centos 7
FusionDirectory Version
1.4-dev
Plugin with the defect
samba
PHP version used
7.3
Origin of php packages
Centos remi repo
Steps to Reproduce
- Create a user with a posix tab
- Save it
- Open it
- Add a samba tab
- see the attribute sambaNTPassword: 31D6CFE0D16AE931B73C59D7E0C089C0
This hash is equivalent to an empty password
Expected behavior:
Don't touch the sambaNTPassword, because there must be already a value here being added by the web service, or ldap injector like lsc.
Actual behavior:
The actual code replace a good sambaNTPassword by this hash representing a empty password
Reproduces how often:
100% of the time
Additional Information
i will put a patch the check that the passowrd is empty and don't touch it, be will need to be revised later