From d5c632cebb2e5ed640d237bd2b9bf20ff2e63e9f Mon Sep 17 00:00:00 2001
From: Jeremy Allison <jra@samba.org>
Date: Thu, 31 Jul 2003 21:47:22 +0000
Subject: Added a note inspired by andrew@cis.uoguelph.ca to explain when this
 parameter gets run. Jeremy. (This used to be commit
 c5e11fd01003fa2d85c91ec81afd2cb2498472f5)

---
 docs/docbook/smbdotconf/security/passwdprogram.xml | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'docs')

diff --git a/docs/docbook/smbdotconf/security/passwdprogram.xml b/docs/docbook/smbdotconf/security/passwdprogram.xml
index dbcc261ce4..22235322c8 100644
--- a/docs/docbook/smbdotconf/security/passwdprogram.xml
+++ b/docs/docbook/smbdotconf/security/passwdprogram.xml
@@ -29,6 +29,13 @@
     for security implications. Note that by default <parameter moreinfo="none">unix 
     password sync</parameter> is set to <constant>no</constant>.</para>
 
+    <para>Not that this program is only invoked when a password change is
+    done via the smbd program, not when smbpasswd is used locally as root to
+    change a password. This means that you cannot run "smbpasswd USERNAME" as
+    root on the SMB server in order to test this parameter, but should run the
+    command "smbpasswd -r SMBMACHINE" as a non-root user instead if you want
+    to test the invocation of this program.</para>
+
     <para>See also <link linkend="UNIXPASSWORDSYNC"><parameter moreinfo="none">unix 
     password sync</parameter></link>.</para>
 
-- 
cgit