diff options
| author | ivan <ivan> | 1998-08-24 03:12:16 +0000 |
|---|---|---|
| committer | ivan <ivan> | 1998-08-24 03:12:16 +0000 |
| commit | 3875e36d98f803893af051b0f7e310bb2bb12320 (patch) | |
| tree | 6d303bc3d1eebb5c16089170fd0eb0875960a175 /fs_passwd | |
| parent | a7ef58103f100935a0ed6a922183d6b26e0df437 (diff) | |
Initial revision
Diffstat (limited to 'fs_passwd')
| -rwxr-xr-x | fs_passwd/fs_passwd_server | 73 |
1 files changed, 73 insertions, 0 deletions
diff --git a/fs_passwd/fs_passwd_server b/fs_passwd/fs_passwd_server new file mode 100755 index 000000000..99e7c4351 --- /dev/null +++ b/fs_passwd/fs_passwd_server @@ -0,0 +1,73 @@ +#!/usr/bin/perl -Tw +# +# fs_passwd_server +# +# portions of this script are copied from the `passwd' script in the original +# (perl 4) camel book, now archived at +# http://www.perl.com/CPAN/scripts/nutshell/ch6/passwd +# +# ivan@sisd.com 98-mar-9 +# +# crypt-aware, s/password/_password/; ivan@sisd.com 98-aug-23 + +use strict; +use IO::Handle; +use FS::SSH qw(sshopen2); +use FS::UID qw(adminsuidsetup); +use FS::Record qw(qsearchs); +use FS::svc_acct; + +$SIG{CHLD} = sub { wait() }; + +&adminsuidsetup; + +my($fs_passwdd)="/usr/local/sbin/fs_passwdd"; + +my($shellmachine)=shift; +die "Usage: fs_passwd_server shellmachine\n" unless $shellmachine; + +while (1) { + my($reader,$writer)=(new IO::Handle, new IO::Handle); + $writer->autoflush(1); + sshopen2($shellmachine,$reader,$writer,$fs_passwdd); + while (1) { + my($username,$old_password,$new_password,$new_gecos,$new_shell); + defined($username=<$reader>) or last; + defined($old_password=<$reader>) or last; + defined($new_password=<$reader>) or last; + defined($new_gecos=<$reader>) or last; + defined($new_shell=<$reader>) or last; + chop($username); + chop($old_password); + chop($new_password); + chop($new_gecos); + chop($new_shell); + my($svc_acct); + + #need to try both $old_password and encrypted $old_password + #maybe the crypt function in svc_acct.export needs to be a library? + my $salt = substr($old_password,0,2); + my $cold_password = crypt($old_password,$salt); + $svc_acct=qsearchs('svc_acct',{'username'=>$username, + '_password'=>$old_password, + } ) + || qsearchs('svc_acct',{'username'=>$username, + '_password'=>$cold_password, + } ); + unless ( $svc_acct ) { print $writer "Incorrect password.\n"; next; } + + my(%hash)=$svc_acct->hash; + my($new_svc_acct) = create FS::svc_acct ( \%hash ); + $new_svc_acct->setfield('_password',$new_password) + if $new_password && $new_password ne $old_password; + $new_svc_acct->setfield('finger',$new_gecos) if $new_gecos; + $new_svc_acct->setfield('shell',$new_shell) if $new_shell; + my($error)=$new_svc_acct->replace($svc_acct); + print $writer $error,"\n"; + } + close $writer; + close $reader; + sleep 60; + warn "Connection to $shellmachine lost! Reconnecting...\n"; +} + |