webadmin-devel

[webmin-devel] Temporary user account disabling - mechanism details

[Fran F. <fr...@ci...>]

Can someone briefly explain or point to me where in the code the
behavior to temporarily disable accounts (I'm specifically looking at
the LDAP module but this may be more general than that)?  I have peeked
at the code and I thought it was some method of appending/prepending a
string onto the crypt'ed password string to disable it, but I notice
that the crypt'ed string doesn't change when I disable an account.  I
need to disable about 1,000 accounts, and I remembered that webmin had
this function, but I want to script similar behavior in this case if I can.

Thanks,
Fran

-- 
Fran Fabrizio
Senior Systems Analyst
Department of Computer and Information Sciences
University of Alabama at Birmingham
http://www.cis.uab.edu/
205.934.0653 

Re: [webmin-devel] Temporary user account disabling - mechanism details

[Jamie C. <jca...@we...>]

On 30/Aug/2007 07:41 Fran Fabrizio wrote ..
> 
> Can someone briefly explain or point to me where in the code the
> behavior to temporarily disable accounts (I'm specifically looking at
> the LDAP module but this may be more general than that)?  I have peeked
> at the code and I thought it was some method of appending/prepending a
> string onto the crypt'ed password string to disable it, but I notice
> that the crypt'ed string doesn't change when I disable an account.  I
> need to disable about 1,000 accounts, and I remembered that webmin had
> this function, but I want to script similar behavior in this case if I
> can.

Hi Fran,

The way Webmin does it is to prepend a ! to the encrypted password, which
makes it invalid. This can be easily removed by the code when you want
to re-enable the account.

You can see this in the code in ldap-useradmin/save_user.cgi line 264.

 - Jamie