Luke Francl wrote: > > On Wed, 12 Jul 2000, Clay Fandre wrote: > > > "Seth I. Bernsen" wrote: > > > > > > A while back I heard mention of a way to allow users to change their > > > password via a canned web interface? Does anybody remember the > > > details? Thanks. > > > > At Honeywell I created a simple perl CGI web form that did this. > > Be careful with security though. Use SSL, and make sure your script > doesn't let the user execute arbitrary commands on the machine! > > Did your script at Honeywell switch user to the person who was doing the > change, then run passwd, or did it edit the password file directly? I'm > just curious. > > Luke It was basically a front-end to /usr/local/bin/passwd. /usr/local/bin/passwd was a perl script that did a LOT more checking that the default passwd program does. (It is based on the passwd program in the Programming Perl 1st ed., page 286). This script allows you to specify other users as a command-line option. Clay --------------------------------------------------------------------- To unsubscribe, e-mail: tclug-list-unsubscribe at mn-linux.org For additional commands, e-mail: tclug-list-help at mn-linux.org