Oops - sent the wrong perl script. The one I sent contained a syntax
error which I corrected on the server, but hadn't copied back to my
development system. Attached are the correct scripts.
Thanks to everyone who responded, particularly Ryan McConigley and
Michael R. Mehall whose suggestions and samples proved invaluable. What
I finally did was add a simple web form to the Apache server on our
Tru64 box. This form calls a cgi script in perl, which in turn executes
an 'expect' script that actually does the password change. Now my users
can easily change their Unix passwords without actually logging in to a
telnet session. Expect is a tool I downloaded from
http://expect.nist.gov/expect.tar.Z and requires Tcl which can be
downloaded from
http://dev.scriptics.com/registration/8.3.2.html
Both tools compile on Tru64 5.1A without too much trouble and work well.
Expect includes examples, one of which helped me a great deal as well.
For simplicity, the ChangePassword.html file goes into the htdocs
directory, and the .cgi and .exp scripts go into the cgi-bin directory.
Permissions in cgi-bin are 544 ( r-xr-r--) which should be safe enough
as this web page is only available internally.
Please send any suggestions for improvements you may have. Be kind -
these are my first html, perl, and expect scripts.
Regards,
Ralf
Ralf Borowski
Senior Systems Specialist
Tembec Inc. - Pulp Group
Tel. (819) 627-4103
Fax. (819) 627-9908
rborowski_at_tembec.ca
-----Original Message-----
From: Ralf Borowski [mailto:rborowski_at_tembec.ca]
Sent: Wednesday, April 10, 2002 8:43 AM
To: tru64-unix-managers_at_ornl.gov
Subject: Changing Passwords
Good Morning!
All "regular users" on my Tru64 5.1A servers use thin clients that
connect to applications and databases residing on our servers. They
only need accounts to make connections with their thin client
applications and never actually log on to the servers to do anything. I
have disabled telnet on the servers and replaced it with SSH and have
purchased clients for my System's Admins to use for their day to day
administration. My problem is that the regular users have no easy way
of changing their Unix account passwords. Is there any utility available
that will allow my users to change their passwords through a (preferably
secure) web interface so I don't have to distribute SSH clients to
everyone? Would it be difficult to write an applet in Java or c to
handle this?
TIA for any suggestions you may have.
Regards,
Ralf
Ralf Borowski
Senior Systems Specialist
Tembec Inc. - Pulp Group
Tel. (819) 627-4103
Fax. (819) 627-9908
rborowski_at_tembec.ca
Received on Fri Apr 19 2002 - 15:06:22 NZST