Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page? (KMM13616275I87L0KM)
Dear Customer, Welcome to Wachovia! My name is Nakesha G and I am happy to assist you. I apologize for the delay in responding to your message. I regret the message we received was unclear. Please send us another secure e-mail with additional information regarding your inquiry. We will be happy to assist you in addressing your concerns when we receive further details. You may also call us at the number listed below for assistance. I sincerely apologize for any inconvenience this matter may cause you. Have a wonderful day! If you have additional questions or concerns, please contact us via e-mail or call 800-950-2296. Representatives are available to assist you 24 hours a day, seven days a week. I value your business as a Wachovia customer and look forward to continuing to serve your financial needs. Visit us again at wachovia.com. Note: Wachovia requires the use of secure browsers to protect you while you access our on-line financial services over the Internet. However, information sent by electronic mail cannot utilize the same standards of securing your personal information that secure browsers afford. Therefore, do not send confidential information such as account numbers or social security numbers through e-mail. Sincerely, Nakesha G Your Case ID is 29959862. Original Message Excluded: - |1581Wach1581| !DSPAM:4884a97432316794110854!
Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?
Well, my vqregister works but when it could not write to user_store database. As vqregister didn't create database, I have to created user_store manually. But I don't know how I make table and fields into user_store. Could you give a script about that ? I use php5.2.6, mysql5.0 vpopmail5.4.6 I am able to add any user with vqregister. Also I got several warning while installing vqregister-2.5 as below; # make all install clean gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o main.o -c main.c gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o cgi.o -c cgi.c gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o template.o -c template.c template.c: In function 't_open': template.c:149: warning: incompatible implicit declaration of built-in function 'exit' gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o global.o -c global.c gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o misc.o -c misc.c gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o config.o -c config.c config.c: In function 'read_config': config.c:71: warning: incompatible implicit declaration of built-in function 'memset' gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o register.o -c register.c gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o password.o -c password.c gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o vpopmail.o -c vpopmail.c vpopmail.c: In function 'add_user': vpopmail.c:16: warning: incompatible implicit declaration of built-in function 'memset' vpopmail.c: In function 'del_user': vpopmail.c:43: warning: incompatible implicit declaration of built-in function 'memset' gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o db.o -c db.c gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o field.o -c field.c gcc -I/var/qmail/vpopmail/include -I/usr/local/include/mysql -o badhosts.o -c badhosts.c gcc -o vqregister main.o cgi.o template.o global.o misc.o config.o register.o password.o vpopmail.o db.o field.o badhosts.o -L/var/qmail/vpopmail/lib -lvpopmail -lcrypt -L/usr/local/lib/mys ql -lmysqlclient Installing... mkdir -p /usr/local/www/cgi-bin/vqregister mkdir -p /usr/local/www/cgi-bin/vqregister/html cp vqregister /usr/local/www/cgi-bin/vqregister/vqregister.cgi cp html/* /usr/local/www/cgi-bin/vqregister/html cp vqregister.email /usr/local/www/cgi-bin/vqregister cp vqregister.conf /usr/local/www/cgi-bin/vqregister chown -R vpopmail /usr/local/www/cgi-bin/vqregister chgrp -R vchkpw /usr/local/www/cgi-bin/vqregister chmod u+s /usr/local/www/cgi-bin/vqregister/vqregister.cgi Cleaning up...done. Thanks a lot - Original Message - From: Rick Romero [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Saturday, July 19, 2008 1:04 AM Subject: Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page? On Sat, 2008-07-19 at 00:48 +0300, Bulent Kolay wrote: I use vpopmail5.4.x on qmail. I also use squirrelmail for webmail. My users sometime may forget their email passwords. So I want my mail server to supply a reset password tool on the webmail page. How can I do that? is there any tool about that? I don't know how others do it, but I use vqregister with email verification for signups, and I store plaintext passwords. I then wrote a php script which accepts a local email address as input, and emails the current password to both the signup address and local address. It's more of a notification than a reset. Here's mine.. the actual notification script has specific errors commented out in preference of generic errors to help prevent email harvesting. Rick Web Page: reset.php ?php global $email; if ($argv[0] || $email || $_POST[email]){ if (!$email){ if (!$argv[0]){ $email = $_POST[email]; }else{ $email = $argv[0]; } } include '/usr/local/www/cgi-bin/getpass.php'; } else{ // Print Form print FORM method=\post\ action=/reset.php\n; print INPUT type=\text\ name=\email\ size=\20\; print input type=\submit\ value=\Submit\; print /FORM/center; } ? --- getpass.php: ?php /* Vpopmail/Vqregister password request thingy This program accepts an email address as input, gets the original signup address from the vqregister table, and the password from the vpopmail table. The current password for the local user is then emailed to the original signup address. I install this under /cgi-bin, and call it with a: ?php include '/usr/local/www/cgi-bin/getpass.php'; ? from a stripped .php file in /data A little 'different', but I feel a little safer :) 7/29/04 Rick Romero [EMAIL PROTECTED]
Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?
On Sun, 2008-07-20 at 19:00 +0300, Bulent Kolay wrote: Well, my vqregister works but when it could not write to user_store database. As vqregister didn't create database, I have to created user_store manually. But I don't know how I make table and fields into user_store. Could you give a script about that ? I use php5.2.6, mysql5.0 vpopmail5.4.6 I am able to add any user with vqregister. Off the top of my head, make sure your db.c points to db_mysql.cI haven't messed with the innards of vqregister for a long time.. It would be best to check the archives first, vqregister isn't as 'hands off' as some other software. Rick !DSPAM:4884fe8532317380113785!
Re: [vchkpw] How does the vpopmail supply a reset password tool over the webmail page?
On Sat, 2008-07-19 at 00:48 +0300, Bulent Kolay wrote: I use vpopmail5.4.x on qmail. I also use squirrelmail for webmail. My users sometime may forget their email passwords. So I want my mail server to supply a reset password tool on the webmail page. How can I do that? is there any tool about that? I don't know how others do it, but I use vqregister with email verification for signups, and I store plaintext passwords. I then wrote a php script which accepts a local email address as input, and emails the current password to both the signup address and local address. It's more of a notification than a reset. Here's mine.. the actual notification script has specific errors commented out in preference of generic errors to help prevent email harvesting. Rick Web Page: reset.php ?php global $email; if ($argv[0] || $email || $_POST[email]){ if (!$email){ if (!$argv[0]){ $email = $_POST[email]; }else{ $email = $argv[0]; } } include '/usr/local/www/cgi-bin/getpass.php'; } else{ // Print Form print FORM method=\post\ action=/reset.php\n; print INPUT type=\text\ name=\email\ size=\20\; print input type=\submit\ value=\Submit\; print /FORM/center; } ? --- getpass.php: ?php /* Vpopmail/Vqregister password request thingy This program accepts an email address as input, gets the original signup address from the vqregister table, and the password from the vpopmail table. The current password for the local user is then emailed to the original signup address. I install this under /cgi-bin, and call it with a: ?php include '/usr/local/www/cgi-bin/getpass.php'; ? from a stripped .php file in /data A little 'different', but I feel a little safer :) 7/29/04 Rick Romero [EMAIL PROTECTED] 1.0 */ global $email; /* Set vars */ // mysql_user needs read access to both the vqregister table, and vpopmail table. $mysql_user = 'login'; $mysql_pass = 'password'; if ($argv[0]){ $email = $argv[0]; } else { if (!$argv[0] !$email){ echo Please enter a valid email address.; exit; } } /* Connect to SQL Server */ $link = mysql_connect('localhost', $mysql_user, $mysql_pass); if (!$link) { die('Could not connect: ' . mysql_error() . '\n'); } /* Verify Username is valid, and only has characters in it (except 1 @) */ //Verify each char is allowed: 0-9,a-z,@A-Z,.,_ // Or see example at: http://us4.php.net/manual/en/ref.mail.php // ASCII Codes 49-57, 97-122, 64-90, 46, 95 $ascii_array = array(46,95); for ($i=0;$istrlen($var);$i++){ $ascii_code=ord($var[$i]); //if ($ascii_code =49 $asci_code =57) if ( ($ascii_code =49 $asci_code =57) || ($ascii_code =97 $asci_code =122) || ($ascii_code =64 $asci_code =90) || in_array($ascii_code,$ascii_array) ){ continue; } else{ return false; } } list($user, $dom) = split('@',$email); /* Get original signup email address */ $emailquery=mysql_query(SELECT cemail from user_store.user_info where dom LIKE '$dom' AND user LIKE '$user' order by rowno desc LIMIT 1); // Always dump mysql_error(), just in case if (mysql_num_rows($emailquery) == 0){ //die('Error 1. Invalid email address ' . mysql_error()); die('1 Script Complete'); } $emailresult = mysql_result($emailquery, 0, 0); if (!$emailresult) { //die('Could not query:' . mysql_error()); die('2 Script Complete'); } /* Get user's current password */ $passquery=mysql_query(SELECT pw_clear_passwd from vpopmail.vpopmail where pw_domain LIKE '$dom' AND pw_name LIKE '$user' LIMIT 1); if (mysql_num_rows($passquery) == 0){ //die('Error 2. Invalid email address' . mysql_error() ); die('Script Complete'); } $passresult = mysql_result($passquery, 0, 0); if (!$passresult) { die('Script Complete'); } /* Send email to user */ ini_set('sendmail_path','/var/qmail3/bin/qmail-inject'); $to = $emailresult . ,.$user.@.$dom ; $headers = From: \Admin\ [EMAIL PROTECTED] \n; $subject = Password request for your account.; $body = Hi,\n\nThe password you requested is:\n . $passresult . \n Please make sure your secret word and\n your signup email address are up to date.\n \nThanks, Management; if (mail($to, $subject, $body, $headers)) { //echo(pcenterScript Complete/center/p); } else { //echo(pMessage delivery failed.../p); } echo Script Complete; ? !DSPAM:4881135132353896316474!