From owner-freebsd-security Tue Jan 22 21:50:21 2002 Delivered-To: freebsd-security@freebsd.org Received: from pirahna.awe-full.com (s64-180-126-6.bc.hsia.telus.net [64.180.126.6]) by hub.freebsd.org (Postfix) with ESMTP id 96B7C37B405 for ; Tue, 22 Jan 2002 21:49:48 -0800 (PST) Received: from uniserve.com (pirahna@localhost [127.0.0.1]) by pirahna.awe-full.com (8.11.6/8.11.6) with ESMTP id g0N5n0j15207; Tue, 22 Jan 2002 21:49:11 -0800 (PST) (envelope-from landons@uniserve.com) Message-ID: <3C4E4ECC.1090100@uniserve.com> Date: Tue, 22 Jan 2002 21:49:00 -0800 From: Landon Stewart User-Agent: Mozilla/5.0 (X11; U; Linux i386; en-US; rv:0.9.4) Gecko/20011126 Netscape6/6.2.1 X-Accept-Language: en-us MIME-Version: 1.0 To: Buliwyf McGraw Cc: freebsd-security@FreeBSD.ORG Subject: Re: Creating users from the web References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org WebMin is a little more than you need for this perticular task, but you could code something to have commands inserted into a database, including ENCRYPTED passwords, then write a perl script to query the database and run whatever commands and parameters were in the database. After its all done, it would mark it completed and around we go. This way its scaleable (if you expand to more than one server). RELATIVELY secure (you could encrypt the SQL connections if you want to go over a network), and best of all you wouldn't have to run anything as root except your perl script that processes and does the user additions. I wrote an EXTENSIVE "tools" package for an ISP I worked for that allowed staff to add/remove for email/usernames/virtusertable entries as well as do searches etc... OR Go with sudo :-) Buliwyf McGraw wrote: > Hello, i want to build a system to create users from a web interface. > I tried to use the su_exec function of apache but it doesn't support > run programs "as root" or execute setuid programs. > I really need that the system work by the web... i know that it could > be insecure, but anyway, i have to do it. > Any sugestions? > Thanks for any help. > >======================================================================= > Buliwyf McGraw > Administrador del Servidor Libertad > Centro de Servicios de Informacion > Universidad del Valle >======================================================================= > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message > -- Landon Stewart System Administrator Vancouver Pacific Pender Uniserve Online Right of Use: The sender intends this message for a specific recipient and, as it may contain information that is privileged or confidential, any use, dissemination, forwarding, or copying by anyone without permission from the sender is prohibited. Personal e-mail may contain views that are not necessarily those of the company. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message