Re: allowing users to change passwords

To: debian-security@lists.debian.org
Cc: debian security <debian-security@lists.debian.org>
Subject: Re: allowing users to change passwords
From: Bryan Andersen <bryan@visi.com>
Date: Thu, 17 Jan 2002 16:43:59 -0600
Message-id: <[🔎] 3C4753AF.4D294FD3@visi.com>
Reply-to: bryan@visi.com
References: <[🔎] 20020117213702.GA32761@fishbowl.madduck.net> <[🔎] 20020117214803.GR11018@wiggy.net>

Wichert Akkerman wrote:
> 
> Previously martin f krafft wrote:
> > what would speak against setting the user's login shell to
> > /usr/bin/passwd?
> 
> Nothing, works just fine. It might be a bit confusing for users
> though since they will have to enter their original password
> twice as well.

You may wish to set the motd specifically for them and explain in 
it what they need to do.

I would also audit the passwd program carefully for security 
problems like buffer overflows, etc.

-- 
|  Bryan Andersen   |   bryan@visi.com   |   http://www.nerdvest.com   |
| Buzzwords are like annoying little flies that deserve to be swatted. |
|      "Linux, the OS Microsoft doesn't want you to know about.".      |
|   -Bryan Andersen                                                    |

Reply to:

References:
- allowing users to change passwords
  - From: martin f krafft <madduck@madduck.net>
- Re: allowing users to change passwords
  - From: Wichert Akkerman <wichert@wiggy.net>

Prev by Date: Re: allowing users to change passwords
Next by Date: Re: allowing users to change passwords
Previous by thread: Re: allowing users to change passwords
Next by thread: Re: allowing users to change passwords
Index(es):
- Date
- Thread