[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [LANdb] Proposed login system

To: landb@avenir.dhs.org
Subject: Re: [LANdb] Proposed login system
Date: Sat, 08 Jan 2000 21:41:33 -0500
#From: John Madden <weez@avenir.dhs.org>
Organization: Webmaster, Avenir Web
References: <Pine.LNX.4.10.10001082124260.15507-100000@angus.ind.WPI.EDU>
Reply-to: landb@avenir.dhs.org
Sender: root@avenir.dhs.org
Sender: weez@avenir.dhs.org

> weez> Well, no matter what user the script/server is run as, you've
> weez> got a potential problem, unless this is a dedicated machine,
> weez> or there's some way of configuring the server to run as one
> weez> user for 'this set of scripts' and another one elsewhere.
>
> You can with suexec.  This is how user-cgi programs are run in user
> public_html directories.

Excellent.

I've got most of the system written, I've just got a few details to touch
up.  Then I'll put together the function ID system and the actual user
manager.


> I would imagine MD5 might also be more secure than DES, which Crypt uses.
> Red Hat Linux has built-in support for MD5 passwords in /etc/shadow for
> this reason.

Good.  I've installed MD5, and I've been using it for what I've written.  It
isn't quite as simple to use as crypt, as you can't just go md5($string)..
have to use handles, but it's no big deal for security.  With suexec, it
oughta be pretty tight anyway.

Thanks..

John




-------------------------------------
LANdb - The Network Management Database
To unsubscribe, send email to landb-request@avenir.dhs.org
	and put 'unsubscribe' in the subject line
Administrative contact: weez@avenir.dhs.org
-------------------------------------

References:
- Re: [LANdb] Proposed login system
  - From: landb@avenir.dhs.org

Prev by Date: Re: [LANdb] Proposed login system
Next by Date: [LANdb] ugh
Prev by thread: Re: [LANdb] Proposed login system
Next by thread: Re: [LANdb] Proposed login system
Index(es):
- Date
- Thread