[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: change password via http

Antoine Jacoutot <ajacoutot@lphp.org> writes:

> I would like my users to be able to change their kerberos password via the 
> web.

> Did anyone ever heard of such an application, or do you have any
> idea how I could implement it securely ?

I think people do this, but I don't know exactly how. An SSL encrypted
page where people can enter their password seems like the easiest way
out, but you have to make sure you don't get spoofed.