Re: [vchkpw] chaning passwords
qmailadmin is what you're looking for. On Thu, 09 Sep 2004 02:02:10 +, Alexandre Vieira [EMAIL PROTECTED] wrote: Hello folks, I'm running qmail(smtpd+pop3d)+vpopmail in my FreeBSD 4.10-STABLE system and I wanted to know if there is any possible way to give the mail users the power to change theyr virtual account password. My clients are arguing because they have to send an email to the sysadmin to change passwords and that is not convenient. thanks alot!
RE: [vchkpw] chaning passwords
-Original Message- From: Alexandre Vieira [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 08, 2004 7:02 PM To: [EMAIL PROTECTED] Subject: [vchkpw] chaning passwords Hello folks, I'm running qmail(smtpd+pop3d)+vpopmail in my FreeBSD 4.10-STABLE system and I wanted to know if there is any possible way to give the mail users the power to change theyr virtual account password. My clients are arguing because they have to send an email to the sysadmin to change passwords and that is not convenient. thanks alot! http://www.mail-archive.com/vchkpw%40inter7.com/msg19253.html This was *JUST* discussed But an alternative that I use: squirrelmail+vpopmail plugin: http://www.squirrelmail.org/plugin_view.php?id=103
Re: [vchkpw] chaning passwords
Joseph Schmitt II wrote: -Original Message- From: Alexandre Vieira [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 08, 2004 7:02 PM To: [EMAIL PROTECTED] Subject: [vchkpw] chaning passwords Hello folks, I'm running qmail(smtpd+pop3d)+vpopmail in my FreeBSD 4.10-STABLE system and I wanted to know if there is any possible way to give the mail users the power to change theyr virtual account password. My clients are arguing because they have to send an email to the sysadmin to change passwords and that is not convenient. thanks alot! http://www.mail-archive.com/vchkpw%40inter7.com/msg19253.html This was *JUST* discussed But an alternative that I use: squirrelmail+vpopmail plugin: http://www.squirrelmail.org/plugin_view.php?id=103 Hello, Thanks for your input but I wasn't explicit enough. We use a non-browsing services, it's just simple smtp/pop3 with no panels. However, this users have shell access to the server and I was thinking that maybe there were a way to modify passwords with the bin/vchangepw but when i use it as a regular user it gives me the following error (and yes the user exists): %/usr/local/vpopmail/bin/vchangepw Please enter the email address: [EMAIL PROTECTED] [EMAIL PROTECTED] Enter old password: Please enter password for [EMAIL PROTECTED]: enter password again: Error: Illegal username % [EMAIL PROTECTED]:/usr/local/vpopmail]# bin/vuserinfo [EMAIL PROTECTED] name: user passwd: $1$zAJePsFq$.1xA6YSFPeqanov4WvqRQ0 clear passwd: uid:1 gid:0 flags: 0 gecos: Username limits: No user limits set. dir: /usr/local/vpopmail/domains/domain.tld/user quota: NOQUOTA usage: NOQUOTA last auth: Thu Sep 9 01:25:36 2004 last auth ip: 127.0.0.1 [EMAIL PROTECTED]:/usr/local/vpopmail]# If anyone has any light on this one i would apreciate. Thanks alot!
RE: [vchkpw] chaning passwords
-Original Message- From: Alexandre Vieira [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 08, 2004 9:01 PM To: [EMAIL PROTECTED] Subject: Re: [vchkpw] chaning passwords Joseph Schmitt II wrote: -Original Message- From: Alexandre Vieira [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 08, 2004 7:02 PM To: [EMAIL PROTECTED] Subject: [vchkpw] chaning passwords Hello folks, I'm running qmail(smtpd+pop3d)+vpopmail in my FreeBSD 4.10-STABLE system and I wanted to know if there is any possible way to give the mail users the power to change theyr virtual account password. My clients are arguing because they have to send an email to the sysadmin to change passwords and that is not convenient. thanks alot! http://www.mail-archive.com/vchkpw%40inter7.com/msg19253.html This was *JUST* discussed But an alternative that I use: squirrelmail+vpopmail plugin: http://www.squirrelmail.org/plugin_view.php?id=103 Hello, Thanks for your input but I wasn't explicit enough. We use a non-browsing services, it's just simple smtp/pop3 with no panels. However, this users have shell access to the server and I was thinking that maybe there were a way to modify passwords with the bin/vchangepw but when i use it as a regular user it gives me the following error (and yes the user exists): %/usr/local/vpopmail/bin/vchangepw Please enter the email address: [EMAIL PROTECTED] [EMAIL PROTECTED] Enter old password: Please enter password for [EMAIL PROTECTED]: enter password again: Error: Illegal username % [EMAIL PROTECTED]:/usr/local/vpopmail]# bin/vuserinfo [EMAIL PROTECTED] name: user passwd: $1$zAJePsFq$.1xA6YSFPeqanov4WvqRQ0 clear passwd: uid:1 gid:0 flags: 0 gecos: Username limits: No user limits set. dir: /usr/local/vpopmail/domains/domain.tld/user quota: NOQUOTA usage: NOQUOTA last auth: Thu Sep 9 01:25:36 2004 last auth ip: 127.0.0.1 [EMAIL PROTECTED]:/usr/local/vpopmail]# If anyone has any light on this one i would apreciate. Thanks alot! Ownership of vchangepw probably wont allow normal users to run, and you most likely wouldn't want that for security reasons. You could make your own perl script (suid vpopmail:vchkpw), and when run, prompt for the full email addres, prompt the old password to check, and upon success, accept the new password that you could then pass to the vpopmail perl module (below), system the vchangepw, or just make the changes to mysql (if you're using) with perl DBI. There is a really old perl module that might still work here: http://bluedot.net/projects/vpopmail.html --joey
Re: [vchkpw] chaning passwords
Am Do, den 09.09.2004 schrieb Alexandre Vieira um 6:01: Thanks for your input but I wasn't explicit enough. We use a non-browsing services, it's just simple smtp/pop3 with no panels. Granted - but what's the problem directing users to a webpage with qmailadmin ? Or do your users not have browsers installed ? However, this users have shell access to the server That's not an ideal situation, from a security point of view. From my understanding, vpopmail (or just about any mail-server software) is not really suited for a multi-user environment where users have local access to the mailserver itself. and I was thinking that maybe there were a way to modify passwords with the bin/vchangepw but when i use it as a regular user it gives me the following error (and yes the user exists): It's not designed to be run by other users than root. cheers, Rainer -- === ~ Rainer Duffner - [EMAIL PROTECTED] ~ ~ Freising - Munich - Germany ~ ~Unix - Linux - BSD - OpenSource - Security ~ ~ http://www.ultra-secure.de/~rainer/pubkey.pgp ~ ===
Re: [vchkpw] chaning passwords
On Sep 8, 2004, at 9:01 PM, Alexandre Vieira wrote: Thanks for your input but I wasn't explicit enough. We use a non-browsing services, it's just simple smtp/pop3 with no panels. However, this users have shell access to the server and I was thinking that maybe there were a way to modify passwords with the bin/vchangepw but when i use it as a regular user it gives me the following error (and yes the user exists): Read the notes in the source to the program to learn how to set it up correctly: * Usage Note: * The binary vchangepw is added. I set up another * user account with this binary as shell and uid/gid * identical to vpopmail. Now users can ssh to the box * as this user and change the password remote without * asking me. It's as secure as everything else when the * login is only allowed with ssh, so everything is * crypted. * * If you don't create an account as above, you will need to change * permissions and ownership on vchangepw to suid vpopmail. It should be safe to use -- setuid doesn't work when run under strace, so there's no chance that a user could trace the process to learn a user's password (or, worse yet, the MySQL user/pass). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
