web-chpass

Submitted by chip on Sat, 02-Aug-2008 - 3:55 pm

Summary:

web-based "change my password" utility

Current release:

1.4

Last updated:

2006-12-21

The web-chpass utility allows users to change their account password through the web. This package was written with security as the foremost concern, flexibility next. It runs on systems that use PAM to manage user authorizations.

The web pages produced are completely customizable. The chpass.cgi utility contains no HTML. Instead, web pages are produced from an external template.

"Bad password" checking can be optionally enabled. The distributed web page template offers the user a choice, with these checks enabled by default.

This package includes several components that may be useful for other applications. The nipasswd utility allows non-privileged programs to authenticate users and change passwords in a fairly secure and reliable fashion. The NiPasswd.pm perl module is a scripted interface to nipasswd.

Attachment	Size
web-chpass-1.4.tar.gz	12.18 KB
web-chpass-1.3.tar.gz	12.08 KB
web-chpass-1.2.tar.gz	11.84 KB
web-chpass-1.1.tar.gz	11.81 KB
web-chpass-1.0.tar.gz	11.14 KB
web-chpass-0.1.tar.gz	10.74 KB

Release history:

Version 1.4 (21-Dec-2006) - Fix failure from "Unexpected PAM message (PAM_TEXT_INFO): Password changed." message generated on SuSE 10.1.

Version 1.3 (12-Nov-2006) - Resolve Fedora 5 portability issues reported by Steve Mokris. Now give useful message when password has expired (PAM_NEW_AUTHTOK_REQD).

Version 1.2 (15-Jun-2003) - This update only affects installation; current users should not bother updating. Drop pam.d/nipasswd from distribution. Instead, copy it from pam.d/passwd, which should be more portable.

Version 1.1 (24-Aug-2002) - New BADPW_CHECKS configuration setting allows the bad password checks to be enabled, disabled, or optional per user selection. New MIN_AUTH_UID and MIN_CHANGE_UID control minimum UID checks, without having to hack code.

Version 1.0 (24-Aug-2002) - Added minimum UID checks, to avoid accessing/changing system accounts.

Version 0.1 (20-Jul-2002) - Initial release for public testing.

Trackbacks

Trackback URL for this post: http://www.unicom.com/trackback/525

Comments

Post new comment

Your name: *

E-mail: *

The content of this field is kept private and will not be shown publicly.

Homepage:

Subject:

Comment: *

Allowed HTML tags: <a> <img> <tt> <cite> <code> <blockquote> <pre> <ul> <ol> <li> <dl> <dt> <dd>
You may post code using <code>...</code> (generic) or <?php ... ?> (highlighted PHP) tags.
Web page addresses and e-mail addresses turn into links automatically.
Each email address will be obfuscated in a human readble fashion or (if JavaScript is enabled) replaced with a spamproof clickable link.
Lines and paragraphs break automatically.

More information about formatting options

CAPTCHA

This question is for testing whether you are a human visitor and to prevent automated spam submissions.

Math Question: * 8 + 9 =

Solve this simple math problem and enter the result. E.g. for 1+3, enter 4.

Software status

Terms used to describe the release status of software projects.

Current -
Project is in active development.
Mature -
Project is not in active development. No new features are expected. Bug fixes may be provided.
Historical -
Project is frozen and no development or bug fixing anticipated.