#! perl # # allow user to change their password # # Author: C. Lane lane@duphy4.physics.drexel.edu # use CGI; use VMS::Stdio; use Digest::MD5 qw(md5_hex); $CRINOID::Reuse = 1; $root = '../netscape_roam/'; $PWDfile = 'sys$login:roaming_access.pwd'; $MINPWDLENGTH = 8; $MAXPWDLENGTH = 32; $q = new CGI; #################### # # must be a secure connection...redirect if not # $url = $q->url; $redirect = $goturl = 0; if ($url =~ /^([a-z0-9]+)\:\/\/([a-z0-9\_\-\.]+)(\:\d+)?\//i) { $goturl = 1; $redirect = lc($1) ne 'https'; $url = 'https://'.$2.'/'.$'; } if ($goturl) { if ($redirect){ print $q->redirect($url); } else { print $q->header("text/html"); if ($q->param('oldpwd')) { try_change($q); } else { show_form($q); } print $q->end_html; } } else { print "Content-type: text/plain\n\n"; print "Error: something about the url $url is peculiar.\n"; print "Please inform the owner of this page\n"; } sub try_change { my $q = shift; print $q->start_html("pwdchange/result"); my $user = lc($q->param('user')); my $o = md5_hex(lc($q->param('oldpwd'))); my $n1 = $q->param('newpwd1'); my $n2 = $q->param('newpwd2'); $user =~ tr/[a-zA-Z0-9\_\-\$\.]/\?/c; if (index($user,'?') != -1) { print "Invalid username
"; print 'Try again'; return; } if ($n1 ne $n2) { print "The new password you entered wasn't the same both times
"; print 'Try again'; return; } if (length($n1) < $MINPWDLENGTH) { print "What you entered for a new password is too short. "; print "Your new password should be at least $MINPWDLENGTH "; print "characters long.
"; print 'Try again'; return; } if (length($n1) > $MAXPWDLENGTH) { print "What you entered for a new password is too long. "; print "Your new password should shorter than ",$MAXPWDLENGTH+1; print "characters long.
"; print 'Try again'; return; } $n2 = md5_hex($n2); if (!open(FH,"<$PWDfile")) { print "There was an error opening the password file...
"; print "Please report this to the owner of this page"; return; } my $j = 0; my @save; my $found = 0; my ($u, $p, $d); while () { $save[$j++] = $_; chomp; s/#.*//; s/^\s+//; s/\s+$//; s/\s+/ /; next if $_ eq ''; ($u,$p,$d) = split; $u =~ tr/[a-zA-Z0-9\_\-\$\.]/\?/c; next if (index($u,'?') != -1); next if (lc($u) ne $user); $found++; $save[$j-1] = $u.' '.$n2.' '.$d."\n"; } close FH; if ($found > 1) { print "Your username found $found times in the password file.
"; print "Please bring this to the attention of the owner of this page!
"; print "This problem must be fixed before you can change your password"; return; } if (!$found || $p ne $o) { print "The old password you entered was incorrect
"; print 'Try again'; return; } if (!open(FH,">$PWDfile-2")) { print "Unable to open password file for writing!"; print "Please bring this to the attention of the owner of this page!"; return; } foreach (@save) { print FH $_; } print FH "# $user PWDCHANGE from '$o' at ",scalar(localtime),"\n"; close FH; unlink($PWDfile); rename("$PWDfile-2", $PWDfile); chmod (0700, $PWDfile); print "Password change successful!
"; } sub show_form { my $q = shift; print $q->start_html("pwdchange/query"); print $q->startform(); print ''; print "

Username:	",$q->textfield(-name=>'user',-value=>'',-size=>32); print '
Old password:	',$q->password_field(-name=>'oldpwd',-value=>'', -force=>1, -size=>32); print '
New password:	',$q->password_field(-name=>'newpwd1',-value=>'', -force=>1, -size=>32); print '
New password (again):	',$q->password_field(-name=>'newpwd2',-value=>'', -force=>1, -size=>32); print '

'; print $q->submit(-name=>'Change'),$q->reset(); print "

Please make a note of your new password so you don't forget it"; } sub ShareOpen { my $f = shift; return undef unless (-e $f); my $fh = VMS::Stdio::vmsopen("<$f","shr=get"); return $fh if defined($fh); sleep(2.0); ### NFS access, try a 2nd time $fh = VMS::Stdio::vmsopen($f,"shr=get"); return $fh; }