subject:"Re\: \[vchkpw\] How does the vpopmail supply a reset password tool over the webmail page\?"

Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page? (KMM13616275I87L0KM)

2008-07-21 Thread Wachovia Service

Dear Customer,

Welcome to Wachovia!  My name is Nakesha G and I am happy to assist you.
I apologize for the delay in responding to your message.

I regret the message we received was unclear.  Please send us another 
secure e-mail with additional information regarding your inquiry.  We 
will be happy to assist you in addressing your concerns when we receive 
further details.  You may also call us at the number listed below for 
assistance.

I sincerely apologize for any inconvenience this matter may cause you.

Have a wonderful day!

If you have additional questions or concerns, please contact us via 
e-mail or call 800-950-2296.  Representatives are available to assist 
you 24 hours a day, seven days a week.

I value your business as a Wachovia customer and look forward to 
continuing to serve your financial needs.  Visit us again at 
wachovia.com.

Note:  Wachovia requires the use of secure browsers to protect you while
you access our on-line financial services over the Internet.  However, 
information sent by electronic mail cannot utilize the same standards of
securing your personal information that secure browsers afford.  
Therefore, do not send confidential information such as account numbers 
or social security numbers through e-mail.

Sincerely, 

Nakesha G

Your Case ID is 29959862.



Original Message Excluded:
-


|1581Wach1581|

!DSPAM:4884a97432316794110854!

Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?

2008-07-21 Thread Bulent Kolay

Well,  my vqregister works but when it could not write to user_store
database.
As vqregister didn't create database, I have to created user_store manually.
But I don't know how I make table and fields  into user_store.
Could you give a script about that ?

I use php5.2.6, mysql5.0 vpopmail5.4.6
I am able to add any user with vqregister.

Also I got several warning while installing vqregister-2.5 as below;

# make all install clean
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o main.o -c
main.c
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o cgi.o -c
cgi.c
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o
template.o -c template.c
template.c: In function 't_open':
template.c:149: warning: incompatible implicit declaration of built-in
function 'exit'
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o global.o -c
global.c
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o misc.o -c
misc.c
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o config.o -c
config.c
config.c: In function 'read_config':
config.c:71: warning: incompatible implicit declaration of built-in function
'memset'
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o
register.o -c register.c
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o
password.o -c password.c
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o
vpopmail.o -c vpopmail.c
vpopmail.c: In function 'add_user':
vpopmail.c:16: warning: incompatible implicit declaration of built-in
function 'memset'
vpopmail.c: In function 'del_user':
vpopmail.c:43: warning: incompatible implicit declaration of built-in
function 'memset'
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o db.o -c db.c
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o field.o -c
field.c
gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o
badhosts.o -c badhosts.c
gcc  -o vqregister main.o cgi.o template.o global.o misc.o config.o
register.o password.o  vpopmail.o db.o field.o
badhosts.o -L/var/qmail/vpopmail/lib -lvpopmail -lcrypt -L/usr/local/lib/mys
ql -lmysqlclient
Installing...
mkdir -p /usr/local/www/cgi-bin/vqregister
mkdir -p /usr/local/www/cgi-bin/vqregister/html
cp vqregister /usr/local/www/cgi-bin/vqregister/vqregister.cgi
cp html/* /usr/local/www/cgi-bin/vqregister/html
cp vqregister.email /usr/local/www/cgi-bin/vqregister
cp vqregister.conf /usr/local/www/cgi-bin/vqregister
chown -R vpopmail /usr/local/www/cgi-bin/vqregister
chgrp -R vchkpw /usr/local/www/cgi-bin/vqregister
chmod u+s /usr/local/www/cgi-bin/vqregister/vqregister.cgi
Cleaning up...done.

Thanks a lot


- Original Message - 
From: Rick Romero [EMAIL PROTECTED]
To: vchkpw@inter7.com
Sent: Saturday, July 19, 2008 1:04 AM
Subject: Re: [vchkpw] How does the vpopmail supply a reset password tool
over the webmail page?


 On Sat, 2008-07-19 at 00:48 +0300, Bulent Kolay wrote:
  I use vpopmail5.4.x on qmail.
  I also use squirrelmail for webmail.
 
  My users sometime may forget their email passwords. So I want my mail
  server to supply a reset password tool on the webmail page.
  How can I do that?
 
  is there any tool about that?
 


 I don't know how others do it, but I use vqregister with email
 verification for signups, and I store plaintext passwords.
 I then wrote a php script which accepts a local email address as input,
 and emails the current password to both the signup address and local
 address.

 It's more of a notification than a reset.

 Here's mine.. the actual notification script has specific errors
 commented out in preference of generic errors to help prevent email
 harvesting.

 Rick

 Web Page:
 reset.php
 ?php
 global $email;
 if ($argv[0] || $email || $_POST[email]){
 if (!$email){
 if (!$argv[0]){
 $email = $_POST[email];
 }else{
 $email = $argv[0];
 }

 }
 include '/usr/local/www/cgi-bin/getpass.php';
 }
 else{
 // Print Form
 print FORM method=\post\ action=/reset.php\n;
 print INPUT type=\text\ name=\email\ size=\20\;
 print input type=\submit\ value=\Submit\;
 print /FORM/center;
 }

 ?

 ---

 getpass.php:
 ?php

 /*   Vpopmail/Vqregister password request thingy
 This program accepts an email address as input,
 gets the original signup address from the vqregister
 table, and the password from the vpopmail table.
 The current password for the local user is then
 emailed to the original signup address.

 I install this under /cgi-bin, and call it with a:
 ?php
 include '/usr/local/www/cgi-bin/getpass.php';
 ?
 from a stripped .php file in /data

 A little 'different', but I feel a little safer :)

 7/29/04 Rick Romero [EMAIL PROTECTED]

Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?

2008-07-21 Thread Rick Romero

On Sun, 2008-07-20 at 19:00 +0300, Bulent Kolay wrote:
 Well,  my vqregister works but when it could not write to user_store
 database.
 As vqregister didn't create database, I have to created user_store manually.
 But I don't know how I make table and fields  into user_store.
 Could you give a script about that ?
 
 I use php5.2.6, mysql5.0 vpopmail5.4.6
 I am able to add any user with vqregister.

Off the top of my head, make sure your db.c points to db_mysql.cI
haven't messed with the innards of vqregister for a long time.. 
It would be best to check the archives first, vqregister isn't as 'hands
off' as some other software.

Rick


!DSPAM:4884fe8532317380113785!

Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?

2008-07-18 Thread Rick Romero

On Sat, 2008-07-19 at 00:48 +0300, Bulent Kolay wrote:
 I use vpopmail5.4.x on qmail.
 I also use squirrelmail for webmail.
  
 My users sometime may forget their email passwords. So I want my mail
 server to supply a reset password tool on the webmail page.
 How can I do that?
  
 is there any tool about that?  
 


I don't know how others do it, but I use vqregister with email
verification for signups, and I store plaintext passwords.  
I then wrote a php script which accepts a local email address as input,
and emails the current password to both the signup address and local
address.

It's more of a notification than a reset.

Here's mine.. the actual notification script has specific errors
commented out in preference of generic errors to help prevent email
harvesting.

Rick

Web Page:
reset.php
?php
global $email;
if ($argv[0] || $email || $_POST[email]){
if (!$email){
if (!$argv[0]){
$email = $_POST[email];
}else{
$email = $argv[0];
}

}
include '/usr/local/www/cgi-bin/getpass.php';
}
else{
// Print Form
print FORM method=\post\ action=/reset.php\n;
print INPUT type=\text\ name=\email\ size=\20\;
print input type=\submit\ value=\Submit\;
print /FORM/center;
}

?

---

getpass.php:
?php

/*   Vpopmail/Vqregister password request thingy
This program accepts an email address as input,
gets the original signup address from the vqregister
table, and the password from the vpopmail table.
The current password for the local user is then
emailed to the original signup address.

I install this under /cgi-bin, and call it with a:
?php
include '/usr/local/www/cgi-bin/getpass.php';
?
from a stripped .php file in /data

A little 'different', but I feel a little safer :)

7/29/04 Rick Romero [EMAIL PROTECTED]  1.0


*/
global $email;
/* Set vars */
// mysql_user needs read access to both the vqregister table, and
vpopmail table.
$mysql_user = 'login';
$mysql_pass = 'password';

if ($argv[0]){
$email = $argv[0];
}
else {
if (!$argv[0]  !$email){
echo Please enter a valid email address.;
exit;
}
}

/* Connect to SQL Server */
$link = mysql_connect('localhost', $mysql_user, $mysql_pass);
if (!$link) {
   die('Could not connect: ' . mysql_error() . '\n');
}

/* Verify Username is valid, and only has characters in it (except 1 @)
*/

//Verify each char is allowed: 0-9,a-z,@A-Z,.,_
//  Or see example at: http://us4.php.net/manual/en/ref.mail.php
// ASCII Codes 49-57, 97-122, 64-90, 46, 95
$ascii_array = array(46,95);

for ($i=0;$istrlen($var);$i++){
$ascii_code=ord($var[$i]);

//if ($ascii_code =49  $asci_code =57)
if ( ($ascii_code =49  $asci_code =57) ||
 ($ascii_code =97  $asci_code =122) ||
 ($ascii_code =64  $asci_code =90) ||
 in_array($ascii_code,$ascii_array) ){

continue;
}
else{
return false;
}
}
list($user, $dom) = split('@',$email);

/* Get original signup email address */

$emailquery=mysql_query(SELECT cemail from user_store.user_info where
dom LIKE '$dom' AND user LIKE '$user' order by rowno desc LIMIT 1);

// Always dump mysql_error(), just in case
if (mysql_num_rows($emailquery) == 0){
//die('Error 1. Invalid email address ' . mysql_error());
die('1 Script Complete');
}

$emailresult = mysql_result($emailquery, 0, 0);
if (!$emailresult) {
//die('Could not query:' . mysql_error());
die('2 Script Complete');
}

/* Get user's current password */

$passquery=mysql_query(SELECT pw_clear_passwd from vpopmail.vpopmail
where pw_domain LIKE '$dom' AND pw_name LIKE '$user' LIMIT 1);

if (mysql_num_rows($passquery) == 0){
//die('Error 2. Invalid email address' . mysql_error() );
die('Script Complete');
}

$passresult = mysql_result($passquery, 0, 0);
if (!$passresult) {
die('Script Complete');
}

/* Send email to user */
ini_set('sendmail_path','/var/qmail3/bin/qmail-inject');
$to = $emailresult . ,.$user.@.$dom ;
$headers = From: \Admin\ [EMAIL PROTECTED] \n;
$subject = Password request for your account.;
$body = Hi,\n\nThe password you requested is:\n . $passresult . \n
Please make sure your secret word and\n your signup email address are up
to date.\n \nThanks, Management;
if (mail($to, $subject, $body, $headers))
{
   //echo(pcenterScript Complete/center/p);
}
else
{
   //echo(pMessage delivery failed.../p);
}

echo Script Complete;

?





!DSPAM:4881135132353896316474!

Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page? (KMM13616275I87L0KM)

Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?

Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?

Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?

4 matches

Site Navigation

Mail list logo

Footer information