|
|
| [Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] |
On Wed, 6 Nov 2002, Haresh Motwani wrote:
> Actually, I need to edit /etc/passwd file thru a gui. The user will be
> asked to enter his username and current pwd along with the new pwd. On
> submit the script will validate the current pwd and then change it. For
> this I need to run a script which will be able to edit my /etc/passwd file.
> Obviously in this case the script would be running as user.
Try usermin, part of the webmin project. webmin/usermin runs as root and
uses PAM to change the password. Because it is a fairly mature opensource
project, its likely to have better security that a customized GUI. That
being said, I don't put things like that on my servers! Customer
requirments vary...
Depending on the requirements, I would setup some iptables rules so it
would only be accessible from specified IP's. That would lessen the
chance of a exploit.
Chuck Peters, Systems Administrator, Network Engineer and Linux Tech.
StarrySkies Network, http://StarrySkies.com, publishing science articles
since 1995. http://StarrySkies.Net, an online science community.
http://StarryMessenger.Net, the weekly newsletter of StarrySkies.
>
> At 08:41 AM 11/6/02 -0500, you wrote:
>
>
> >Whoa, why do you need to do this? it's generally a really bad idea.
> >If you need a user to edit his/her own info via this script, that's what
> >commands like passwd, chfn, and chsh are for. Otherwise, only root should be
> >running something like this.
> >
> >--Andy
> >
> >
> >On Wed, Nov 06, 2002 at 12:49:43PM +0530, Haresh Motwani wrote:
> > > I need to read and edit /etc/passwd file thru a script which is running as
> > > a user.
> > >
> > > Can suEXEC do it? is there any other way of doing it.
> > >
> > >
> > > -- Attached file included as plaintext by Ecartis --
> > >
> > >
> > > ---
> > > Outgoing mail is certified Virus Free.
> > > Checked by AVG anti-virus system (http://www.grisoft.com).
> > > Version: 6.0.385 / Virus Database: 217 - Release Date: 9/4/02
> > >
> > >
> > > ------------------------------------------------------------------------
> > > To unsubscribe email security-discuss-request@linuxsecurity.com
> > > with "unsubscribe" in the subject of the message.
> > >
> >------------------------------------------------------------------------
> > To unsubscribe email security-discuss-request@linuxsecurity.com
> > with "unsubscribe" in the subject of the message.
> >
> >
> >---
> >Incoming mail is certified Virus Free.
> >Checked by AVG anti-virus system (http://www.grisoft.com).
> >Version: 6.0.385 / Virus Database: 217 - Release Date: 9/4/02
>
>
> -- Attached file included as plaintext by Ecartis --
>
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.385 / Virus Database: 217 - Release Date: 9/4/02
>
>
> ------------------------------------------------------------------------
> To unsubscribe email security-discuss-request@linuxsecurity.com
> with "unsubscribe" in the subject of the message.
>
------------------------------------------------------------------------
To unsubscribe email security-discuss-request@linuxsecurity.com
with "unsubscribe" in the subject of the message.
[Home] [Fedora Announce] [Linux Crypto] [Kernel] [Netfilter] [Video for Linux] [Bugtraq] [USB] [Network Security] [Fedora Security]
|
|