Re: passwd by WWW
Marcin,
I've come across this problem too. I think i searched freshmeat.net, and
found a few scripts which did the trick - however I wasn't confident
enough to put them into place.
Is www a priority? You could write a simple perl script which securely
launched passwd, and set the script to be the user's shell. This is what
I do on my server.
rgds,
Ian.
ps: if anyone *does* have a good cgi for changing passwords, please send
it to me :)
On Mon, Apr 22, 2002 at 11:43:00AM +0200, Marcin Bednarz wrote:
>
> Hi all.
>
> I must have changing password via WWW.
> There is many idea - cgi script, C code (PAM module functions), PHP.
> But whis will be the best - simple and secure.
>
> I thinked about setting shell as /bin/passwd but I not be able to do that,
> because I don't want to enable anything else to users.
> (In /etc/sshd/sshd_config -> AllowUsers I and my second admin)
>
> Any idea ? (or example scripts ?)
>
> Thx
> Marcin Bednarz.
>
>
>
> --
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
--
Ian Cumming, ian@semisphere.org
"The number of Unix installations has grown to 10, with more expected."
-- The Unix Programmer's Manual, 2nd Edition, June, 1972
--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to:
- References:
- passwd by WWW
- From: Marcin Bednarz <mbednarz@student.uci.agh.edu.pl>