OK, I have a slightly odd request here. Problem! We're trying to set up a new mail host with (among other things) dpsam and lighttpd. Everything is working fine, until I hit a block today. dspam.cgi references the environment variable REMOTE_USER, which means it assumes the web server has done the authentication already. Well, lighttpd won't do authentication against /etc/shadow, and neither LDAP or trying to maintain two password databases are feasible options right now.
Solution? So, I was wondering if anyone out there has created a login "front page" for dspam.cgi that would do the authentication, then call dspam.cgi with the required environment variable(s). Of course, this wrapper would have to keep state, either via cookies or URL schemes, but that's understood. Another option might be hacking up a Usermin plugin, but I'm not sure how well that'd work. Anyone? j -- Joshua Kugler Lead System Admin -- Senior Programmer http://www.eeinternet.com PGP Key: http://pgp.mit.edu/ ID 0xDB26D7CE PO Box 80086 -- Fairbanks, AK 99708 -- Ph: 907-456-5581 Fax: 907-456-3111
