Date: Sun, 17 Aug 1997 21:48:59 -0400 From: Chris Shenton <chris@absinthe.i3inc.com> To: ulf@alameda.net Cc: danny@panda.hilink.com.au, isp@freebsd.org Subject: Re: Changing password via web ? Message-ID: <199708180149.VAA28208@absinthe.i3inc.com> In-Reply-To: Your message of "Mon, 18 Aug 1997 10:27:48 %2B1000 (EST)" References: <Pine.BSF.3.91.970818101834.308U-100000@panda.hilink.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 18 Aug 1997 10:27:48 +1000 (EST) "Daniel O'Callaghan" <danny@panda.hilink.com.au> wrote: danny> I've done this. The problem is that you need a process running as root. danny> There are two ways to do this - danny> 1. run the httpd as root, which is a bad idea; danny> 2. have a setuid program which does the change - this is what I did. Good point. I should have mentioned in my previous message about my SSL password form is that I use RADIUS, and I use it with its own auth file (DBM) rather than /etc/passwd. That way I avoid needing a suid program. But if you wanna change real system passwords, rather than RADIUS, then there's no way around this. Sorry for the confusion.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199708180149.VAA28208>