From owner-freebsd-questions Sun Apr 12 04:32:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA24378 for freebsd-questions-outgoing; Sun, 12 Apr 1998 04:32:12 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from chippie.cgu.nl (chippie.cgu.nl [145.101.220.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA24372 for ; Sun, 12 Apr 1998 04:32:07 -0700 (PDT) (envelope-from psd@cgu.nl) Received: from localhost (psd@localhost) by chippie.cgu.nl (8.8.7/8.8.7/psd) with SMTP id NAA00644; Sun, 12 Apr 1998 13:34:31 +0200 (CEST) Date: Sun, 12 Apr 1998 13:34:31 +0200 (CEST) From: Paul Dekkers X-Sender: psd@chippie.cgu To: "Three goddesses, Venus figures" cc: Dima Dorfman , freebsd-questions@FreeBSD.ORG Subject: Re: password change via the web?! In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Sat, 11 Apr 1998, Three goddesses, Venus figures wrote: > On Sat, 11 Apr 1998, Dima Dorfman wrote: > > > Such a script would be very hard to make secure, because to change a > > password, you have to run with root's permissions. > > Actually, you could use a perl/expect combo to do this without running as > root and without hacking the passwd code. Can you give me an example? Tried to play with open (PWD, "passwd |"); and/or open (PWD, "|passwd"); (Can't I combine those?) but I didn't manage to get things working. By the way, I'd prefer to have this done under C, because I think I need a suid root prog to change a password, and I don't like suidperl because people get root realy easy with it. Any sulution? Paul To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message