this is what i did: i wrote a simple cgi script for changing passwords through web. then i have a file that contains the login names whose passwords cant be changed. ex. root guest nobody etc. then loginname and new password is stored in a file (shadow like) and then run cron periodically to update the actual shadow file. just another female sysad, ina patricia --- Dido Sevilla <[EMAIL PROTECTED]> wrote: > Elizabeth Garcia wrote: > > > > hello, > > can someone help me..... i've been task to > > maintain a linux server with web and mail. so far > i've > > been able to understand mail services but now i > must > > be able to have an online change of email > password.. > > can someone help me out or just give ideas on how > to > > do this task..... thanks... > > > > You could make everyone's shell /usr/bin/passwd. > Only give root's inner > circle shell accounts. That way, anyone telnetting > into the server > would get the passwd program and can change their > password that way. I > remember there was a poppassd program that allowed > one to change > passwords across the network, but I've never been > able to properly > configure it (this is probably the best solution if > you can find it, as > it allows users to change their passwords from a > mail client like > Eudora). Alternatively, since you're running a web > server on the Linux > box anyway, you could write a simple CGI script that > would allow users > to change their passwords from the web page, but > that's probably not a > good idea security-wise. > > -- > Rafael R. Sevilla <[EMAIL PROTECTED]> +63 > (2) 4342217 > Mobile Robotics Laboratory +63 > (917) 4458925 > University of the Philippines Diliman > > - > Philippine Linux Users Group. Web site and archives > at http://plug.linux.org.ph > To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] __________________________________________________ Do You Yahoo!? Send instant messages & get email alerts with Yahoo! Messenger. http://im.yahoo.com/ - Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
