From b335618d1743599588902cfd2be4ae37150b239d Mon Sep 17 00:00:00 2001 From: Andrew Tridgell Date: Mon, 25 May 2009 15:23:54 +1000 Subject: fixed interpretation of ACB_PWNOTREQ This bit actually means that we should ignore the minimum password length field for this user. It doesn't mean that the password should be seen as empty --- source4/auth/ntlm/auth_sam.c | 14 -------------- 1 file changed, 14 deletions(-) (limited to 'source4/auth') diff --git a/source4/auth/ntlm/auth_sam.c b/source4/auth/ntlm/auth_sam.c index 2b9b92812cb..e99d0e1f51b 100644 --- a/source4/auth/ntlm/auth_sam.c +++ b/source4/auth/ntlm/auth_sam.c @@ -152,20 +152,6 @@ static NTSTATUS authsam_password_ok(struct auth_context *auth_context, { NTSTATUS status; - if (acct_flags & ACB_PWNOTREQ) { - if (lp_null_passwords(auth_context->lp_ctx)) { - DEBUG(3,("Account for user '%s' has no password and null passwords are allowed.\n", - user_info->mapped.account_name)); - *lm_sess_key = data_blob(NULL, 0); - *user_sess_key = data_blob(NULL, 0); - return NT_STATUS_OK; - } else { - DEBUG(3,("Account for user '%s' has no password and null passwords are NOT allowed.\n", - user_info->mapped.account_name)); - return NT_STATUS_LOGON_FAILURE; - } - } - switch (user_info->password_state) { case AUTH_PASSWORD_PLAIN: { -- cgit