> I have the userlog script. I am wondering on how I should call it, since
> the detail file has root ownership and it would require a root-run script
> to read, which leaves a big security hole. Also, do you have it check for
> a user's password before it lets him/her see it? Thanks for the reply, I
> appreciate it.
The detail file is updated by cron and rcp to the web server. The
checkusage.sh executes as the web server's user which then envokes
userlog on the detail file which has all readability and userlog is also
ran by the web server. The detail file is copied from the radiusd
server to the web server nightly.
I have set up Netscape for the NCSA style user database and have
restricted access to the checkusage.sh ...
The user database is updated by a script that does an awk on the
password file from the radiusd server nightly. The username and
password is checked and passed to the checkusage.sh
Below is my web page generated by checkusage.sh:
#!/bin/sh
#
cat <<EOF
Content-type: text/html
Calculating time used this month... Please wait, this may take a few minutes. ..
EOF ./userlog $REMOTE_USER detail -- /* Chuck Rouzer - rouzer@spyder.net - http://www.spyder.net /*