From 8339ab6d6939f873a40845a02b9029ff02dc6b19 Mon Sep 17 00:00:00 2001 From: jim-p Date: Fri, 25 Jun 2010 14:38:03 -0400 Subject: Prevent the GUI from adding a user that already exists in /etc/passwd (root, operator, daemon, etc) --- usr/local/www/system_usermanager.php | 8 ++++++++ 1 file changed, 8 insertions(+) (limited to 'usr/local/www/system_usermanager.php') diff --git a/usr/local/www/system_usermanager.php b/usr/local/www/system_usermanager.php index 058046a..b0ecd8f 100644 --- a/usr/local/www/system_usermanager.php +++ b/usr/local/www/system_usermanager.php @@ -215,6 +215,14 @@ if (isAllowedPage("system_usermanager")) { break; } } + $system_users = explode("\n", file_get_contents("/etc/passwd")); + foreach ($system_users as $s_user) { + $ent = explode(":", $s_user); + if ($ent[0] == $_POST['usernamefld']) { + $input_errors[] = gettext("That username already exists or is reserved by the system."); + break; + } + } } /* -- cgit v1.1