From owner-freebsd-security Sun Feb 16 19:30:36 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id TAA18187 for security-outgoing; Sun, 16 Feb 1997 19:30:36 -0800 (PST) Received: from cwsys.cwent.com (cschuber.net.gov.bc.ca [142.31.240.113]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA18181 for ; Sun, 16 Feb 1997 19:30:31 -0800 (PST) Received: (from uucp@localhost) by cwsys.cwent.com (8.8.5/8.6.10) id TAA14440; Sun, 16 Feb 1997 19:29:30 -0800 (PST) Message-Id: <199702170329.TAA14440@cwsys.cwent.com> Received: from localhost.cwent.com(127.0.0.1), claiming to be "cwsys" via SMTP by localhost.cwent.com, id smtpd014436; Mon Feb 17 03:29:21 1997 Reply-to: cys@mailhost.wlc.com X-Mailer: Xmh To: Poul-Henning Kamp cc: Jason Fesler , security@freebsd.org Subject: Re: changing password... In-reply-to: Your message of "Sun, 16 Feb 1997 01:28:37 +0100." <14683.856052917@critter.dk.tfs.com> Date: Sun, 16 Feb 1997 19:29:21 -0800 From: Cy Schubert Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > In message <3.0.1.32.19970215160537.006e1dec@pop.calweb.com>, Jason Fesler wr ites: > >At 11:48 PM 2/15/97 +0100, Poul-Henning Kamp wrote: > >> > >>Why don't we have an option for /usr/bin/passwd to input a precoded > >>password ? > > > >Hmm, I thought that's what we use chpass for ... :-) > >It is willing to take a command-line encrypted password for > >the argument. I'm using it on a www password change routine. > > Yes, but only root can use the -p option on chpass, right ? Why not create an optional setuid root front end to chpass that does this. A simple Perl script would suffice. Why make the base code more complex when we don't need to? Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 UNIX Support OV/VM: BCSC02(CSCHUBER) ITSD BITNET: CSCHUBER@BCSC02.BITNET Government of BC Internet: cschuber@uumail.gov.bc.ca cschuber@bcsc02.gov.bc.ca "Quit spooling around, JES do it."