From a99bf332940f48ae0a503ad6a4909c490626f612 Mon Sep 17 00:00:00 2001 From: Andrew Tridgell Date: Thu, 25 Nov 2004 04:01:31 +0000 Subject: r3953: the lm verifier key in passwoed ChangePasswordUser3 is based on the nt hash, not the lm hash (This used to be commit 8d4f0dc7d0745fc86fd43205b21d846acdc1d8c7) --- source4/rpc_server/samr/samr_password.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'source4') diff --git a/source4/rpc_server/samr/samr_password.c b/source4/rpc_server/samr/samr_password.c index 745d2cfc05..787061602c 100644 --- a/source4/rpc_server/samr/samr_password.c +++ b/source4/rpc_server/samr/samr_password.c @@ -332,7 +332,7 @@ NTSTATUS samr_ChangePasswordUser3(struct dcesrv_call_state *dce_call, /* check LM verifier */ if (lm_pwd && r->in.lm_verifier != NULL) { E_deshash(new_pass, new_lm_hash); - E_old_pw_hash(new_lm_hash, lm_pwd->hash, lm_verifier.hash); + E_old_pw_hash(new_nt_hash, lm_pwd->hash, lm_verifier.hash); if (memcmp(lm_verifier.hash, r->in.lm_verifier->hash, 16) != 0) { status = NT_STATUS_WRONG_PASSWORD; goto failed; -- cgit