| commit | 21abbeaee9b7f7cff1d34d048463c30cda44a2e3 | |
| author | Jim McDonough <jmcd@samba.org> | |
| Tue, 3 Oct 2006 17:14:18 +0000 (3 17:14 +0000) | ||
| committer | Gerald (Jerry) Carter <jerry@samba.org> | |
| Wed, 10 Oct 2007 17:15:06 +0000 (10 12:15 -0500) | ||
| tree | 2cd084533267635433538e03581a0d3f8107adf5 | treesnapshot (tar.gz zip) |
| parent | ec526e1b882e3ade23f90c5e3d637c72b6839da5 | commitdiff |
r19058: Implement "user cannot change password", and complete "user must change
password at next logon" code. The "password last set time" of zero now
means "user must change password", because that's how windows seems to
use it. The "can change" and "must change" times are now calculated
based on the "last set" time and policies.
We use the "can change" field now to indicate that a user cannot change
a password by putting MAX_TIME_T in it (so long as "last set" time isn't
zero). Based on this, we set the password-can-change bit in the
faked secdesc.
password at next logon" code. The "password last set time" of zero now
means "user must change password", because that's how windows seems to
use it. The "can change" and "must change" times are now calculated
based on the "last set" time and policies.
We use the "can change" field now to indicate that a user cannot change
a password by putting MAX_TIME_T in it (so long as "last set" time isn't
zero). Based on this, we set the password-can-change bit in the
faked secdesc.