[4137] in WWW Security List Archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: adduser web page

daemon@ATHENA.MIT.EDU (Charles Brian Hill)
Mon Jan 27 14:23:55 1997

Date: Mon, 27 Jan 1997 12:25:08 -0500 (EST)
From: Charles Brian Hill <hill@unr.net>
To: nella@asis.com
cc: www-security@ns2.rutgers.edu
In-Reply-To: <199701270544.VAA12823@asis.com>
Errors-To: owner-www-security@ns2.rutgers.edu

On Sun, 26 Jan 1997 nella@asis.com wrote:

> Is there any reason why it would not be possible to securely allow users to
> change their passwords via a web page and cgi script? Does anyone know if
> such a script already exists?
> 

Yes.  I use such a script to allow my users to change their passwords.  It
verifies that a user is who they say they are (logged in to the
appropriate port on our terminal server), verifies their old password, and
allows them to change to a new one.

--
Charles Brian Hill                                   Florida State University
Work =904.385.0436                                  UNIX System Administrator
Pager=904.657.6772                               Up & Running Computer Repair


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[4137] in WWW Security List Archive

Re: adduser web page

daemon@ATHENA.MIT.EDU (Charles Brian Hill)Mon Jan 27 14:23:55 1997

daemon@ATHENA.MIT.EDU (Charles Brian Hill)
Mon Jan 27 14:23:55 1997