![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to passwd.c CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [CSRG BSD Unix] / 3BSD / cmd|
Return to passwd.c CVS log | Up to [CSRG BSD Unix] / 3BSD / cmd |
1.1 root 1: /*
2: * enter a password in the password file
3: * this program should be suid with owner
4: * with an owner with write permission on /etc/passwd
5: */
6: #include <stdio.h>
7: #include <signal.h>
8: #include <pwd.h>
9:
10: char passwd[] = "/etc/passwd";
11: char temp[] = "/etc/ptmp";
12: struct passwd *pwd;
13: struct passwd *getpwent();
14: int endpwent();
15: char *strcpy();
16: char *crypt();
17: char *getpass();
18: char *getlogin();
19: char *pw;
20: char pwbuf[10];
21: char buf[BUFSIZ];
22:
23: main(argc, argv)
24: char *argv[];
25: {
26: char *p;
27: int i;
28: char saltc[2];
29: long salt;
30: int u,fi,fo;
31: int insist;
32: int ok, flags;
33: int c;
34: int pwlen;
35: FILE *tf;
36: char *uname;
37:
38: insist = 0;
39: if(argc < 2) {
40: if ((uname = getlogin()) == NULL) {
41: printf ("Usage: passwd user\n");
42: goto bex;
43: } else {
44: printf("Changing password for %s\n", uname);
45: }
46: } else {
47: uname = argv[1];
48: }
49: while(((pwd=getpwent()) != NULL)&&(strcmp(pwd->pw_name,uname)!=0));
50: u = getuid();
51: if((pwd==NULL) || (u!=0 && u != pwd->pw_uid))
52: {
53: printf("Permission denied.\n");
54: goto bex;
55: }
56: endpwent();
57: if (pwd->pw_passwd[0] && u != 0) {
58: strcpy(pwbuf, getpass("Old password:"));
59: pw = crypt(pwbuf, pwd->pw_passwd);
60: if(strcmp(pw, pwd->pw_passwd) != 0) {
61: printf("Sorry.\n");
62: goto bex;
63: }
64: }
65: tryagn:
66: strcpy(pwbuf, getpass("New password:"));
67: pwlen = strlen(pwbuf);
68: if (pwlen == 0) {
69: printf("Password unchanged.\n");
70: goto bex;
71: }
72: ok = 0;
73: flags = 0;
74: p = pwbuf;
75: while(c = *p++){
76: if(c>='a' && c<='z') flags |= 2;
77: else if(c>='A' && c<='Z') flags |= 4;
78: else if(c>='0' && c<='9') flags |= 1;
79: else flags |= 8;
80: }
81: if(flags >=7 && pwlen>= 4) ok = 1;
82: if(((flags==2)||(flags==4)) && pwlen>=6) ok = 1;
83: if(((flags==3)||(flags==5)||(flags==6))&&pwlen>=5) ok = 1;
84:
85: if((ok==0) && (insist<2)){
86: if(flags==1)
87: printf("Please use at least one non-numeric character.\n");
88: else
89: printf("Please use a longer password.\n");
90: insist++;
91: goto tryagn;
92: }
93:
94: if (strcmp(pwbuf,getpass("Retype new password:")) != 0) {
95: printf ("Mismatch - password unchanged.\n");
96: goto bex;
97: }
98:
99: time(&salt);
100: salt += getpid();
101:
102: saltc[0] = salt & 077;
103: saltc[1] = (salt>>6) & 077;
104: for(i=0;i<2;i++){
105: c = saltc[i] + '.';
106: if(c>'9') c += 7;
107: if(c>'Z') c += 6;
108: saltc[i] = c;
109: }
110: pw = crypt(pwbuf, saltc);
111: signal(SIGHUP, SIG_IGN);
112: signal(SIGINT, SIG_IGN);
113: signal(SIGQUIT, SIG_IGN);
114:
115: if(access(temp, 0) >= 0) {
116: printf("Temporary file busy -- try again\n");
117: goto bex;
118: }
119: close(creat(temp,0600));
120: if((tf=fopen(temp,"w")) == NULL) {
121: printf("Cannot create temporary file\n");
122: goto bex;
123: }
124:
125: /*
126: * copy passwd to temp, replacing matching lines
127: * with new password.
128: */
129:
130: while((pwd=getpwent()) != NULL) {
131: if(strcmp(pwd->pw_name,uname) == 0) {
132: u = getuid();
133: if(u != 0 && u != pwd->pw_uid) {
134: printf("Permission denied.\n");
135: goto out;
136: }
137: pwd->pw_passwd = pw;
138: if (pwd->pw_gecos[0] == '*')
139: pwd->pw_gecos++;
140: }
141: fprintf(tf,"%s:%s:%d:%d:%s:%s:%s\n",
142: pwd->pw_name,
143: pwd->pw_passwd,
144: pwd->pw_uid,
145: pwd->pw_gid,
146: pwd->pw_gecos,
147: pwd->pw_dir,
148: pwd->pw_shell);
149: }
150: endpwent();
151: fclose(tf);
152:
153: /*
154: * copy temp back to passwd file
155: */
156:
157: if((fi=open(temp,0)) < 0) {
158: printf("Temp file disappeared!\n");
159: goto out;
160: }
161: if((fo=creat(passwd, 0644)) < 0) {
162: printf("Cannot recreat passwd file.\n");
163: goto out;
164: }
165: while((u=read(fi,buf,sizeof(buf))) > 0) write(fo,buf,u);
166:
167: out:
168: unlink(temp);
169:
170: bex:
171: exit(1);
172: }
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.