Very Computer

Dear all

We have a solaris workstation Sparc 10 (Solaris 2.4)
with some accounts which only should connect to the
workstation to get there email. One guy told me to
use /bin/passwd as login-shell, so that they could
change there passwords.
I dont think that it is a good idea to have such a
suid program as the shell (btw. passwd changing works)
but I dont know another solution. Our mailers are
win** or Mac users which connect over internet-browsers
mail (via popper) and have no ideas about UNIX
Can somebody help me
 Thanx in Advance
   mike

Quote:> I dont think that it is a good idea to have such a
> suid program as the shell (btw. passwd changing works)
> but I dont know another solution. Our mailers are

Quote:> win** or Mac users which connect over internet-browsers
> mail (via popper) and have no ideas about UNIX

I wonder if the poppassd is a secure daemon, by the way.
Is there anybody aware of any security threats when using
this daemon ?

--
Sylvain Niervze + <URL:http://www.mygale.org/03/sly/> (fciw,uvv)
<URL:http://www.frmug.org/cgi-bin/fciwa.cgi>

Quote:> There is a poppasswd on the Qualcomm FTP Server
> which is used for my POP3 users to change their
> password within Eudora (Special, Change Passwd if I remember
> well) :
> ftp://ftp.qualcomm.com/quest/unix/...

> I wonder if the poppassd is a secure daemon, by the way.
> Is there anybody aware of any security threats when using
> this daemon ?

Jean
_____________________________________________________________________________

Unit de Conformation des Macromolcules Biologiques   Tel: +32 (0)2 650 3587
Universit libre de Bruxelles                          FAX: +32 (0)2 648 8954
av. FD Roosevelt 50 - CP160/16, B-1050 Bruxelles, Belgium
_____________________________________________________________________________