The script itself is called signup.cgi.  Basically, it goes in your /cgi-bin/
directory, owned by vpopmail.vchkpw with permissions 4755 (suid).  The template
files go whereever you see fit (probably out of the web server's range), and
you change the constants in the top of singup.cgi to reflect the new placement.
Also, change the default domain to the domain that people are signing up for.
I am intending to make this dependant on an environment variable, but haven't
yet.

In several places I did some naughty things (I'm still learning this stuff), so
for the moment, if you edit the templates, make sure that the form still
defines the fields just like:

<input type="text" name="*" value="">

You need the same spacing, and I think it has to be at the beginning of the
line.  Sorry --- I will probably fix these things later.  Other stuff may break
if you fiddle too much with the templates.

If you don't like my password and missing field warnings, they can be changed
in the script on lines 57 and 41 respectively.

I think that's it.  It should be secure (I read the perlsec manpage carefully),
but no guarantees (or warrantees, express or implied --- however that goes).  I
feel comfortable using it, but that doesn't mean I didn't miss something.
Suggestions are _very_ welcome.

Lang Martin
lang@cross-cc.com
