Richard,
Very good point, and you are correct, I am not looking to hire an army and
spend tons of time and money on it.
I have since rethought this, thanks in part to this thread. I have
decided to go with something more secure. Since I have a database of
users already for the site on ServerA
> I am looking to do like Hotmail, or Yahoo!, or Mail.com, or any of the
> other places do. I can go sign up on their site and immediately have an
> e-mail account that I can start using. No admin has to take the time to
> create my account for me.
You do understand that these hosts have MAJOR P
On Saturday 04 December 2004 05:33, Jonathan Duncan wrote:
> Such as? I assume you have something in mind.
>
> That would certainly be nice. I am not against considering it. Although I
> am somewhat tied to sendmail as that is what my hosting provider supports
> and also what I am familiar with
Jason,
Such as? I assume you have something in mind.
That would certainly be nice. I am not against considering it. Although I
am somewhat tied to sendmail as that is what my hosting provider supports
and also what I am familiar with.
Jonathan
"Jason Wong" <[EMAIL PROTECTED]> wrote in mes
On Saturday 04 December 2004 02:47, Jonathan Duncan wrote:
[snip]
> rethink my strategy. Thanks to everyone. Richard, I consider myself a
> highly security conscious person, but you are making me
> think more like a criminal, and that is good. Security is very important.
In that case may I su
se.
Stefan
-Ursprüngliche Nachricht-
Von: Jonathan Duncan [mailto:[EMAIL PROTECTED]
Gesendet: Freitag, 3. Dezember 2004 18:55
An: [EMAIL PROTECTED]
Betreff: Re: [PHP] Page that checks if a user exists on a remote system
Christophe,
I see where you are coming from with that, but the purpo
Jonathan Duncan wrote:
> Ok, so this is what I have done:
>
> *-*-*-*-*-*-*-*-*-*-*
> $idResults = `sudo -u admin ssh [EMAIL PROTECTED] id usertocheck 2>&1`;
> echo "id: (".$idResults.")\r\n"."\r\n";
> if (ereg("no such user", $idResults)) {
> echo 'id blah!';
> }
> *-*-*-*-*-*-*-*-*-*-*
> So
Dezember 2004 18:55
> An: [EMAIL PROTECTED]
> Betreff: Re: [PHP] Page that checks if a user exists on a remote system
>
> Christophe,
>
> I see where you are coming from with that, but the purpose of this script
> is to remove me from the picture completely. I want someone to b
Christophe,
I see where you are coming from with that, but the purpose of this script
is to remove me from the picture completely. I want someone to be able to
come sign up on my site and automatically be added as a mail user and
other things so that I do not need to do that kind of thing.
I a
Jonathan Duncan wrote:
I will also be doing a remote command to add a user to the remote
system (ServerB) from the same PHP script.
If you want to manage a server via web interface, dont reinvent
the wheel. Use webmin, by example.
Webmin runs a mini "webserver" as root (on port 1),
and uses mo
Ok, so this is what I have done:
*-*-*-*-*-*-*-*-*-*-*
$idResults = `sudo -u admin ssh [EMAIL PROTECTED] id usertocheck 2>&1`;
echo "id: (".$idResults.")\r\n"."\r\n";
if (ereg("no such user", $idResults)) {
echo 'id blah!';
}
*-*-*-*-*-*-*-*-*-*-*
And, here are the results that I get when I
ave pointed out that this can possibly be
flawed, you are perfectly correct.
-TG
> -Original Message-
> From: Jason Wong [mailto:[EMAIL PROTECTED]
> Sent: Thursday, December 02, 2004 11:28 AM
> To: [EMAIL PROTECTED]
> Subject: Re: [PHP] Page that checks if a user exis
If it's a un*x system and you have permissions to connect to the SMTP
server, you could use the VRFY command to check to see if their email
address exists or not maybe:
Example of Verifying a User Name
Either
S: VRFY Smith
R: 250 Fred Smith <[
Well, I can honestly say I had not thought of doing it that way. I will
keep that as an option. Thanks.
Jonathan
On Thu, 2 Dec 2004, Gryffyn, Trevor wrote:
If it's a un*x system and you have permissions to connect to the SMTP
server, you could use the VRFY command to check to see if their email
On Thursday 02 December 2004 23:32, Gryffyn, Trevor wrote:
> If it's a un*x system and you have permissions to connect to the SMTP
> server, you could use the VRFY command to check to see if their email
> address exists or not maybe:
Just want to point out that this behaviour is dependent on the f
Gryffyn, Trevor wrote:
> If it's a un*x system and you have permissions to connect to the SMTP
> server, you could use the VRFY command to check to see if their email
> address exists or not maybe:
>
> Example of Verifying a User Name
>
> Either
>
> S: VRFY
Looks like I was missing a comma after the ssh command and before the id
command.
Jonathan
"Jonathan Duncan" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
>I have put this in my sudoers file using visudo to edit it:
>
> www ALL = NOPASSWD: /usr/local/bin/sudo puser, (puser) NOP
I have put this in my sudoers file using visudo to edit it:
www ALL = NOPASSWD: /usr/local/bin/sudo puser, (puser) NOPASSWD:
/usr/bin/ssh /usr/bin/id
However the www user is still being asked for a password.
Is this too off topic for this list?
Jonathan
"Jonathan Duncan" <[EMAIL PROTECTED]>
Perhaps this gets more into server administration, but it is mixed so much
into the php script, which is why I am asking it here.
Yes, sudo was one of my first thoughts. As far as the implementation goes
though. How do you work the remote access bit? Using ssh do you use the
ssl cert switch
On Wed, 1 Dec 2004 17:57:28 -0700, news.php.net <[EMAIL PROTECTED]> wrote:
> Anyone else doing or done something like this?
I use sudo when my web server needs temporary elevated permissions.
--
Greg Donald
Zend Certified Engineer
http://gdconsultants.com/
http://destiney.com/
--
PHP General
20 matches
Mail list logo
