Enrico Zini wrote: > Now we have shadow passwords, MD5 hashes, NIS, LDAP, PAM... wow! It's > fantastic, but I need something that knows how to change passwords on my > system, because I don't.
Check out chpasswd - you can pass it a list of username:newpassword pairs. > I would like to call passwd from my setuid root CGI (in which all security > precautions would have been taken), feed him the new password and let him to > whatever it pleases, but it could complain about passwords being too weak. Look into cgiwrap. It'll take care of a lot of the security issues for you. If you're doing this to make it easier on the commandline-phobics to change their password, consider changing their shell to /usr/bin/passwd and embedding a telnet link in the web page. This is assuming from your comments about Samba that you're using your linux box as a server and the users never login directly - obviously this won't work if they're actually using their shell accounts. No suid root cgi that way, no having to worry about the security issues. jpb -- Joe Block <[EMAIL PROTECTED]> CREOL System Administrator Social graces are the packet headers of everyday life.