Date: Sun, 22 Aug 1999 09:57:31 -0600 (MDT) From: Colin Eric Johnson <colinj@cs.unm.edu> To: freebsd-security@freebsd.org Subject: getting passwored data via a perl cgi Message-ID: <Pine.LNX.4.10.9908220956330.5398-100000@portico.cs.unm.edu>
next in thread | raw e-mail | index | archive | help
I'm in the process of writing a cgi script in perl that should verify people against the machines password file. The problem that I am running into is that if the script is run by anyone other then root I get an empty encrypted password field. I don't want to run the cgi SUID root as this doesn't seem safe. Is there a way to allow other users access to complete password database? I understand, basically, why this is restricted but I'm not sure how else to solve this given FreeBSDs restrictions. thanks Colin E. Johnson | colinj@unm.edu | http://www.unm.edu/~colinj/ Parker always felt things in his bones because, he said, it saved space. -Steven Ayelett, _The Crime Studio_ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.10.9908220956330.5398-100000>