Password Policies prevent `sudo su`
| Originator: | frank | ||
| Number: | rdar://47011754 | Date Originated: | 1/1/2019 |
| Status: | Open | Resolved: | |
| Product: | macOS + SDK | Product Version: | 10.14.2 |
| Classification: | Reproducible: | Always |
Area: Terminal Summary: Applying a Password Policy profile may break ability for `sudo su` to authenticate properly. Steps to Reproduce: 1. Install Password Policy profile with requirements that make current password non-compliant. (Example: set current password to `password`, apply profile that requires numbers in password) 2. Open Terminal 3. Type `sudo su` 4. Attempt to authenticate. 5. Note that user is prompted to reset the password. Expected Results: User should be allowed to successfully change the password, if prompted in Terminal. Actual Results: Command results in `Sorry` message and the user is unable to proceed despite having provided the correct credentials. Version/Build: Confirmed in 10.14.2, unclear if it appears earlier. Configuration: User account with password set.
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!