gosa (2.7.4+reloaded2-6) unstable; urgency=low For avoiding code injections during Samba account password changes, the user password entered in GOsa now gets base64 encoded prior to handing it over to the sambaHashHook. On the sambaHashHook side you have to make sure that the handed over string gets base64-decoded prior to NT/LM hash generation. If you configure sambaHashHook in gosa.conf (or in LDAP), please make sure to adapt the code for generating Samba's NT and LM hashes. For further references, please consult the man page of gosa.conf (5). -- Mike Gabriel Sun, 31 Jan 2016 10:29:30 +0100