Re: web-based http password/group manager

To: Hamish Moffatt <hamish@debian.org>
Cc: debian-user@lists.debian.org
Subject: Re: web-based http password/group manager
From: Alvin Oga <aoga@mail.Linux-Consulting.com>
Date: Sat, 12 Nov 2005 23:19:09 -0800 (PST)
Message-id: <[🔎] Pine.LNX.3.96.1051112230953.23766A-100000@Maggie.Linux-Consulting.com>
In-reply-to: <[🔎] 20051113063436.GA23430@cloud.net.au>


On Sun, 13 Nov 2005, Hamish Moffatt wrote:

> > vi ... takes about 5 seconds bring up the files to add/delete users :-)
> 
> This is true ;-) Except for encrypted passwords. Anyway, I want
> web-based so that web accounts can be administered more simply.

couple minutes to make a cgi-script that:

func add users()
	htpasswd -c .htpasswd newuser

	htpasswd administers its passwd automatically
	and nothing to do about it .. including
	changing from des to rsa to foo-encryption

find and delete users()
	if [ grep user .htpasswd ]
	  grep -iv user < .htpasswd.old > .htpasswd 

add the cosmetics as needed, or more importantly,
filter out all the whacky things like "rm -rf /" as
a username and/or passwd and watch for race conditions

or install somebody else's appp and spend min/hrs/days/weeks
trying to figure out what they intended for you to be doing

either way.. you will still need to make a webpage
that calls their cgi or your cleaned up cgi-as-above
to change your all important .htpasswd and .htaccess 
and other equivalent files

c ya
alvin

Reply to:

References:
- Re: web-based http password/group manager
  - From: Hamish Moffatt <hamish@debian.org>

Prev by Date: Re: compiling mozilla 1.8a4 vs. 1.7.12 + truetype
Next by Date: Re: Request to remove Information
Previous by thread: Re: web-based http password/group manager
Next by thread: Re: web-based http password/group manager
Index(es):
- Date
- Thread