Unicom Systems Development

Software Archive

 blq
 better_spam_protect
 cgi-postin
 enh-du
 force-preview
 htmlab
 mrsh
 postping
 pxytest
 rlytest
 uucpm
 web-chpass
 web-nsupdate
 xtail

Back to Software Archive index.

Unicom Systems home.

Comments and feedback.

Chip Rosenthal
<chip@unicom.com>

Software Archive: web-chpass

Program: web-chpass
Description: web-based "change my password" utility
Version: 1.4 (21-Dec-2006)

The web-chpass utility allows users to change their account password through the web. This package was written with security and flexibility as the primary concerns--and in that order. It runs on systems that use PAM to manage user authorizations. At this time, it has been tested only on Red Hat 7.2.

The web pages produced are completely customizable. The chpass.cgi utility contains no HTML. Instead, web pages are produced from an external template.

"Bad password" checking can be optionally enabled. As distributed, the web page template offers the user a choice, with these checks enabled by default.

This package includes several components that may be useful for other applications. The nipasswd utility allows non-privileged programs to authenticate users and change passwords in a fairly secure and reliable fashion. The NiPasswd.pm perl module is a scripted interface to nipasswd.

Files

Last Modified Size File Description
21-Dec-2006 10:37:31 12469 web-chpass.tar.gz link to current release
21-Dec-2006 10:41:06 747 web-chpass-listing.txt listing of archive contents
21-Dec-2006 10:41:06 4107 README package README
21-Dec-2006 10:42:42 3800 nipasswd.8.html nipasswd(8) manual page
21-Dec-2006 10:41:06 4107 NiPasswd.pm.html NiPasswd(3) manual page
21-Dec-2006 10:37:31 12469 web-chpass-1.4.tar.gz web-chpass package
12-Nov-2006 21:22:35 12373 web-chpass-1.3.tar.gz web-chpass package
15-Jun-2003 10:51:38 12124 web-chpass-1.2.tar.gz web-chpass package
24-Aug-2002 14:16:59 12091 web-chpass-1.1.tar.gz web-chpass package
24-Aug-2002 02:15:41 11409 web-chpass-1.0.tar.gz web-chpass package
20-Jul-2002 13:36:15 10994 web-chpass-0.1.tar.gz web-chpass package

Release History

Version 1.4 (21-Dec-2006) - Fix failure from "Unexpected PAM message (PAM_TEXT_INFO): Password changed." message generated on SuSE 10.1.

Version 1.3 (12-Nov-2006) - Resolve Fedora 5 portability issues reported by Steve Mokris. Now give useful message when password has expired (PAM_NEW_AUTHTOK_REQD).

Version 1.2 (15-Jun-2003) - This update only affects installation; current users should not bother updating. Drop pam.d/nipasswd from distribution. Instead, copy it from pam.d/passwd, which should be more portable.

Version 1.1 (24-Aug-2002) - New BADPW_CHECKS configuration setting allows the bad password checks to be enabled, disabled, or optional per user selection. New MIN_AUTH_UID and MIN_CHANGE_UID control minimum UID checks, without having to hack code.

Version 1.0 (24-Aug-2002) - Added minimum UID checks, to avoid accessing/changing system accounts.

Version 0.1 (20-Jul-2002) - Initial release for public testing.

$Id: Package.def,v 1.9 2006/12/21 16:43:57 chip Exp $