Web based password updating...

Adam Gover agover at rogers.wave.ca
Tue Jan 27 21:06:35 EST 2004


Kendrick,

Im starting to think you took the better of the two options.  I did some
additional looking and it looks like the better option is to simply do
the mysql thing.  I was trying to avoid it as it adds some additional
overhead, which I admit really shouldn't impact the system at all, that
said its better to be a miser :)

Ill see if I can whip up a quick little cgi or php password changer.  

I figure ill just do the passwd rip to insert the user names into the
database without actually creating the inbox, then once the password is
set auto create the inbox for them...  That should work pretty well
actually...

Thanks for the idea..  A little bit of extra work for me, but if it
saves me the pain of having my co-workers freaking because users keep
calling to set passwords its always good :)

Adam

> -----Original Message-----
> From: owner-info-cyrus at lists.andrew.cmu.edu [mailto:owner-info-
> cyrus at lists.andrew.cmu.edu] On Behalf Of Kendrick Vargas
> Sent: Tuesday, January 27, 2004 8:23 PM
> To: Cyrus Info List
> Subject: Re: Web based password updating...
> 
> On Tue, 27 Jan 2004, Adam Gover wrote:
> 
> > Im not too sure if this is the correct list for this or not so
please
> > excuse me if I have misdirected this.
> >
> > Im in the process of migrating my departments internal mail system
to a
> > cyrus/postfix combo.  Our current system is simply using /etc/shadow
&
> > /etc/passwd for authentication/user lookup at this point I am not
aware
> > of a simple method to obtain the users current passwords as such I
need
> > to arrange a way for users to update passwords.
> >
> > Since my team really doesn't have the resources (or time) to field
the
> > 200-300 calls for users attempting to change passwords I was
wondering
> > if anyone has run across a web based password change tool that will
work
> > with my setup (web-cyradm I don't think will work).  I have looked
> > around but as of yet I have not seen anything that will allow this.
> 
> Well, I wrote my own. Basically I migrated my /etc/passwd+shadow to a
> mysql database. The migration was probably easier for me (~30 users)
than
> it would be for you. Then I set up cyrus-sasl to auth against mysql.
> Writing a php script to handle changing users' passwords was very
easy. If
> you don't feel comfortable doing that, you could look into imp-4's
> modules. IMP v4 which is in CVS has a whole buncha modules along side
it
> which basically make it the perfect account administration interface,
> including password change. Would anyone (off the top of their heads)
know
> how close they are to releasing?
> 			-peace
> 
> --
> Let he who is without clue kiss my ass





More information about the Info-cyrus mailing list