From owner-freebsd-isp  Thu Jan 30 17:08:46 1997
Return-Path: <owner-isp>
Received: (from root@localhost)
          by freefall.freebsd.org (8.8.5/8.8.5) id RAA18410
          for isp-outgoing; Thu, 30 Jan 1997 17:08:46 -0800 (PST)
Received: from cold.org (cold.org [206.81.134.103])
          by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA18405
          for <freebsd-isp@freebsd.org>; Thu, 30 Jan 1997 17:08:41 -0800 (PST)
Received: from localhost (brandon@localhost) by cold.org (8.8.3/8.8.3) with SMTP id SAA22306; Thu, 30 Jan 1997 18:08:32 -0700 (MST)
Date: Thu, 30 Jan 1997 18:08:32 -0700 (MST)
From: Brandon Gillespie <brandon@cold.org>
To: Ernie Elu <ernie@spooky.eis.net.au>
cc: freebsd-isp@freebsd.org
Subject: Re: Password change via Web page
In-Reply-To: <199701310014.KAA19887@spooky.eis.net.au>
Message-ID: <Pine.NEB.3.95.970130180648.22304A-100000@cold.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-isp@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

> Does anyone know of a method whereby a user can change his or her password
> via a web page just using netscape or any other common browser?

There are many, none of which you want to do because of extreme security
problems (basically the CGI would hav to run as root, plus you would want
to run it under an SSL server).

BUT, if you insist upon this unsecure method, just have a cgi script
running as root which calls 'passwd' with the correct username and
password.  Course, piping into passwd may be hard, use perl, or write your
own 'passwd' program..

-Brandon Gillespie