management scrips

Re: management scrips

Shamrock wrote:[color=blue]
>
> Hi,
>
> I'm writting some scripts to management users on server
> throuh www. I need to call some functions like "adduser",
> "rmuser" etc. in my scripts. I'd like to know the best way
> I could do this. I want secure sripts. Could anyone help me
> to find solution to do this ?
>
> best regards,
> --
> Shamrock
>
> Ps. Sorry for my terrible english .[/color]

Why reinvent the wheel? Check out webmin.

--

To reply, delete the 'x' from my email
Jerry Stuckle,
JDS Computer Training Corp.
jstucklex@attgl obal.net
Member of Independent Computer Consultants Association - www.icca.org

Re: management scrips

On 2005-02-17, Jerry Stuckle <jstucklex@attg lobal.net> wrote:[color=blue]
> Shamrock wrote:[color=green]
>>
>> Hi,
>>
>> I'm writting some scripts to management users on server
>> throuh www. I need to call some functions like "adduser",
>> "rmuser" etc. in my scripts. I'd like to know the best way
>> I could do this. I want secure sripts. Could anyone help me
>> to find solution to do this ?
>>
>> best regards,
>> --
>> Shamrock
>>
>> Ps. Sorry for my terrible english .[/color]
>
> Why reinvent the wheel? Check out webmin.[/color]

Because I need to write my own scripts and I prefer php
then perl.


--
Shamrock

Re: management scrips

Sebastian =?iso-8859-2?Q?Tymk=F3w?= wrote:[color=blue]
>
> On 2005-02-17, Jerry Stuckle <jstucklex@attg lobal.net> wrote:[color=green]
> > Shamrock wrote:[color=darkred]
> >>
> >> Hi,
> >>
> >> I'm writting some scripts to management users on server
> >> throuh www. I need to call some functions like "adduser",
> >> "rmuser" etc. in my scripts. I'd like to know the best way
> >> I could do this. I want secure sripts. Could anyone help me
> >> to find solution to do this ?
> >>
> >> best regards,
> >> --
> >> Shamrock
> >>
> >> Ps. Sorry for my terrible english .[/color]
> >
> > Why reinvent the wheel? Check out webmin.[/color]
>
> Because I need to write my own scripts and I prefer php
> then perl.
>
> --
> Shamrock[/color]

I understand that. However, in order to call adduser, etc., you will
need root access, either by running as root or changing the userid to
root (i.e. posix_setuid). This is a huge security risk.

You can get around this a little bit by having a php executible outside
the web server's root directory; this program could then have the
ability to set the uid to root. You still have a high security risk for
hackers - but at least they would be limited to whatever the program
does. You'll probably need other programs to modify and delete users
(or put everything in one program).

You will also need to have secure access (https://) to your server, to
encrypt the passwords as you add the people.

And, if you don't get everything right, a hacker can break into your
site and do anything he/she wants - like "rm -r /".

It's why I suggest webmin. The moduels are already there, tested and
work just fine. Webmin is it's own server, running on a separate port,
using secure access. There are additional modules to handle a lot of
other administrative function. And it's free.

--

To reply, delete the 'x' from my email
Jerry Stuckle,
JDS Computer Training Corp.
jstucklex@attgl obal.net
Member of Independent Computer Consultants Association - www.icca.org

Re: management scrips

Thanks for your reply. I know that it's insecure
but I must write it my on own.

Best regards,

Shamrock

Re: management scrips


"Shamrock" <Shamrock@[cut this please]astercity.net> wrote in message
news:cv5oih$1c2 g$1@mamut1.aste r.pl...[color=blue]
> Thanks for your reply. I know that it's insecure
> but I must write it my on own.
>
> Best regards,
>
> Shamrock[/color]

Why?

Knowing the "Why" might help people understand your problem a lot better
than knowing the "what" - if you fully understood the whole problem, you
probably wouldn't be asking for help!

Matt

Re: management scrips

On 2005-02-19, Matt Mitchell <m_a_t_t_remove _the_underscore s@metalsponge.n et> wrote:[color=blue]
>
> "Shamrock" <Shamrock@[cut this please]astercity.net> wrote in message
> news:cv5oih$1c2 g$1@mamut1.aste r.pl...
> Why?
>
> Knowing the "Why" might help people understand your problem a lot better
> than knowing the "what" - if you fully understood the whole problem, you
> probably wouldn't be asking for help!
>[/color]
It's my bechelor's degree. I use perl on console ( and I prefer manage my system via
console than www ) but this application
should be "user friendly" and got "nice appearance".
I prefer use php because I've already done engine to add,delete user to database
, manage him etc. Only what I need is do the same thing in system.

--
Shamrock