HtmlMatchPasswd.pm
Prev Kernun UTM Reference (1) Next

Name

HtmlMatchPasswd.pm — encapsulates the databases of the HTML form value control tool html-match-db(1) for storing two couples of credentials (internal username and password and external username and password). It also keeps the logs of the actions over the particular accounts.

Synopsis

HtmlMatchPasswd.pm -f root_dir [-bpSv] [-u iu] [-d log_level] { -a | -C | -l | -L | -r | -R | -s | -n }

Description

Utility HtmlMatchPasswd.pm is used to manage password files (pairs of internal/external usernames/passwords database) used by the data matching and processing module, see also html-match-db(1), data-matching(7). It provides functions for adding, deleting, listing users, setting the password, etc. It provides a perl package interface for accessing the database by other programs (i.e., www user interface for changing the password by the users). While the command-line interface is intended to be used by the administrator, the perl package interface also provides functionality intended for the end users (check the old password before it can be changed, etc).

Two password files are kept: var/passwd.db and var/passwd. The first one (passwd.db) keeps the database in the form it is used by the http-proxy (see data-matching(7)). The other file (passwd) keeps more information (in particular, it stores the unencrypted local usernames), so it is possible to change credentials, remove the user without knowledge of the internal password, etc.

The activity of users is logged. Each user's activity is logged in file log/internal_username. You can view the log using -L.

Options

-a

Add an user. Internal username, internal password, external username and external password are asked to be entered.

-C

Check the consistency of the two databases (see above). Use -R to repair inconsistency.

-l

Print the list of internal usernames.

-L

Show the user log. Use -u to limit the log to a single user. Without -u, the log of all users is printed.

-r

Remove a user. Only internal username is asked.

-R

Checks the consistency of the two databases (see above). If an inconsistency is found, it is repaired (HASH found only in passwd.db is removed from it, HASH found only in passwd is added into passwd.db).

-s

Set the credentials for an existing user. Internal username, new internal password, new external username and new external password are asked.

-n

Print the license limitations: used, free and total.

-f

Specify the root of the HtmlMatchPasswd.pm file infrastructure. Directories root_dir/var, root_dir/var/log, and files files root_dir/var/lock, root_dir/var/passwd, root_dir/var/passwd.db, root_dir/var/log/internal_username are eventually used. The var directory is assumed to exist; the remaining ones are created if they do not exist. All of them must be writable for any user that manipulates the databases.

-b

Batch mode. Does not display prompts when asking questions, etc.

-d

Set the log level explicitly. Otherwise, environmental variable LOG_LEVEL is used. Acceptable values: 0–9.

-p

When asking for password, the terminal ECHO is normally switched off so it is read silently, without being displayed. This can be overriden by specifying -b.

-S

When asking for the new internal password, its strength is not checked (and even a weak password is accepted).

-u iu

When displaying the user log (see option -L), limit it to the particular user.

-v

More verbose mode.

Exit Code

The program returns exit code 0 if the command is successfully performed, and a nonzero if an error occurs.

See Also

html-match-db(1), data-matching(7), http-proxy(8)

Authors

This man page is a part of Kernun.
Copyright © 2000–2023 Trusted Network Solutions, a. s.
All rights reserved.

Prev Up Next
Kernun UTM Reference (1) Home clear-web-db-update.sh