diff options
author | Andrew Bartlett <abartlet@samba.org> | 2013-10-31 16:57:10 +1300 |
---|---|---|
committer | Stefan Metzmacher <metze@samba.org> | 2014-04-02 19:30:59 +0200 |
commit | 85f57ebda360092efd5d71744d018c4cadd6d86b (patch) | |
tree | 3e2bcc792a996493eb9f2f7c4da525bb3a554b2d /source4/dsdb | |
parent | 311de5fb4ae46536eb43178f4102728855625e20 (diff) | |
download | samba-85f57ebda360092efd5d71744d018c4cadd6d86b.tar.gz samba-85f57ebda360092efd5d71744d018c4cadd6d86b.tar.xz samba-85f57ebda360092efd5d71744d018c4cadd6d86b.zip |
torture-samr: Add testing of account lockout and password change behaviour
This is the regression test to avoid a repeat of CVE-2013-4496
This includes confirming that badPwdCount is updated on login, not just on first failure
However the badPwdCount is not updated if the account is disabled
Note: that samr_QueryUserInfo return the effective bad_password_count in level
5, 16 and 21, while it returns the raw value in level 3.
(Sadly the s3 code does not do this correctly, so a knownfail is added)
Change-Id: I4fd8ac5c3b1357e7a98386756dac2a43eb778ecf
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Autobuild-User(master): Stefan Metzmacher <metze@samba.org>
Autobuild-Date(master): Wed Apr 2 19:30:59 CEST 2014 on sn-devel-104
Diffstat (limited to 'source4/dsdb')
0 files changed, 0 insertions, 0 deletions