From owner-freebsd-questions  Fri May 24 12:10:19 1996
Return-Path: owner-questions
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id MAA17284
          for questions-outgoing; Fri, 24 May 1996 12:10:19 -0700 (PDT)
Received: from fslg8.fsl.noaa.gov (fslg8.fsl.noaa.gov [137.75.131.171])
          by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id MAA17240
          for <questions@freebsd.org>; Fri, 24 May 1996 12:10:01 -0700 (PDT)
Received: by fslg8.fsl.noaa.gov (5.57/Ultrix3.0-C)
	id AA05939; Fri, 24 May 96 19:09:44 GMT
Message-Id: <9605241909.AA05939@fslg8.fsl.noaa.gov>
Received: by emu.fsl.noaa.gov
	(1.40.112.3/16.2) id AA254924983; Fri, 24 May 1996 13:09:43 -0600
Date: Fri, 24 May 1996 13:09:43 -0600
From: Sean Kelly <kelly@fsl.noaa.gov>
To: asmith@ai2a.net
Cc: questions@freebsd.org
In-Reply-To: <199605240334.WAA23110@ai2a.net> (asmith@ai2a.net)
Subject: Re: Front Page BSDi Server Extensions
Sender: owner-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

>>>>> "Andy" == "Andy Smith" <asmith@ai2a.net> writes:

    Andy> [ FrontPage server extensions problems ]

I can't comment.

    Andy> Even if the extensions *did* work, there is still a
    Andy> problem. The extensions want to run under the process id of
    Andy> the server, which we have is user 'nobody' for obvious
    Andy> reasons. Front Page *does* ask for the user name and 'a'
    Andy> password. If you would, if you could, I'd like to have the
    Andy> server extensions work in such a fashion that when a user
    Andy> starts with Front Page, it will start a fork running under
    Andy> the PID of the user who logs on with Front Page.

If all of your subscribers are in your web server's password file (or
the NIS password file, if you're using NIS), it'd be fairly simple to
write a CGI script to prompt for user name and password, verify them
in the password file, then set the effective user ID to that user, and
finally run the front page CGI script.

Note that this isn't specific to FreeBSD, but is definitely specific
to various sites.  For example, a site may have a single host
dedicated to web service, but subscribers will have accounts on other
hosts.  For this, the web service system would best redirect the query
to an adjunct web server running elsewhere that has access to the
password file and therefore can change effective user IDs.

-- 
Sean Kelly                          
NOAA Forecast Systems Laboratory    kelly@fsl.noaa.gov
Boulder Colorado USA                http://www-sdd.fsl.noaa.gov/~kelly/