From owner-freebsd-bugs@FreeBSD.ORG  Mon Apr 21 11:40:07 2003
Return-Path: <owner-freebsd-bugs@FreeBSD.ORG>
Delivered-To: freebsd-bugs@hub.freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id DA22037B404
	for <freebsd-bugs@hub.freebsd.org>;
	Mon, 21 Apr 2003 11:40:06 -0700 (PDT)
Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B214143FE3
	for <freebsd-bugs@hub.freebsd.org>;
	Mon, 21 Apr 2003 11:40:04 -0700 (PDT)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1])
	by freefall.freebsd.org (8.12.9/8.12.9) with ESMTP id h3LIe4Up098285
	for <freebsd-bugs@freefall.freebsd.org>;
	Mon, 21 Apr 2003 11:40:04 -0700 (PDT)
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.12.9/8.12.9/Submit) id h3LIe4B9098281;
	Mon, 21 Apr 2003 11:40:04 -0700 (PDT)
Resent-Date: Mon, 21 Apr 2003 11:40:04 -0700 (PDT)
Resent-Message-Id: <200304211840.h3LIe4B9098281@freefall.freebsd.org>
Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer)
Resent-To: freebsd-bugs@FreeBSD.org
Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org,
	"Crist J. Clark" <cjc@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 533D137B401
	for <FreeBSD-gnats-submit@freebsd.org>;
	Mon, 21 Apr 2003 11:37:25 -0700 (PDT)
Received: from sccrmhc02.attbi.com (sccrmhc02.attbi.com [204.127.202.62])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 62B3143F3F
	for <FreeBSD-gnats-submit@freebsd.org>;
	Mon, 21 Apr 2003 11:37:24 -0700 (PDT)	(envelope-from cjc@attbi.com)
Received: from blossom.cjclark.org
	(12-234-159-107.client.attbi.com[12.234.159.107])
	by sccrmhc02.attbi.com (sccrmhc02) with ESMTP
	id <2003042118372300200pj50ee>; Mon, 21 Apr 2003 18:37:23 +0000
Received: from blossom.cjclark.org (localhost. [127.0.0.1])
	by blossom.cjclark.org (8.12.8p1/8.12.3) with ESMTP id h3LIbMki079883
	for <FreeBSD-gnats-submit@freebsd.org>;
	Mon, 21 Apr 2003 11:37:22 -0700 (PDT)
	(envelope-from cjc@blossom.cjclark.org)
Received: (from cjc@localhost)
	by blossom.cjclark.org (8.12.8p1/8.12.8/Submit) id h3LIbMTU079882
	for FreeBSD-gnats-submit@freebsd.org;
	Mon, 21 Apr 2003 11:37:22 -0700 (PDT)
Received: from vegeta.cjclark.org (localhost.cjclark.org [127.0.0.1])
	by vegeta.cjclark.org (8.12.6p2/8.12.6) with ESMTP id h3GJoYdc007713
	for <FreeBSD-gnats-submit@freebsd.org>;
	Wed, 16 Apr 2003 12:50:35 -0700 (PDT)
	(envelope-from cjc@vegeta.cjclark.org)
Received: (from cjc@localhost)
	by vegeta.cjclark.org (8.12.6p2/8.12.6/Submit) id h3GJoYsJ007712;
	Wed, 16 Apr 2003 12:50:34 -0700 (PDT)
Message-Id: <200304161950.h3GJoYsJ007712@vegeta.cjclark.org>
Date: Wed, 16 Apr 2003 12:50:34 -0700 (PDT)
From: "Crist J. Clark" <cjc@FreeBSD.org>
To: FreeBSD-gnats-submit@FreeBSD.org
X-Send-Pr-Version: 3.113
Subject: bin/51245: PAM will not allow users with null password to change
	password
X-BeenThere: freebsd-bugs@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-bugs>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Help: <mailto:freebsd-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Apr 2003 18:40:07 -0000


>Number:         51245
>Category:       bin
>Synopsis:       PAM will not allow users with null password to change password
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Apr 21 11:40:04 PDT 2003
>Closed-Date:
>Last-Modified:
>Originator:     Crist J. Clark
>Release:        FreeBSD 5.0-RELEASE i386
>Organization:
>Environment:
	FreeBSD 5.0-RELEASE-p7. Using local passwords.
>Description:
	A user with a null password cannot change his password.
>How-To-Repeat:
	As a non-privileged user, change your password to a null
(empty) password,

	$ passwd
	Changing local password for user
	Old Password: (old password)
	New Password: (just hit <enter>)
	Retype New Password: (just hit <enter>)
	$

The user should now have an empty password. Try logging in with the
null password. It should work fine. But now try to change your
password,

	$ passwd
	Changing local password for user
	Old Password: (just hit <enter>)
	passwd: sorry
	$

It will not let you.

>Fix:
	Since root doesn't need to type the old password, root can
reset the user's password.

	As for the real fix, the problem seems to lie within PAM,
somewhere within the pam_chauthtok() function.
>Release-Note:
>Audit-Trail:
>Unformatted: