Based on the code you currently have posted (ie, none), no, there is no way to do this.

Please take a moment to peruse How do I post a question effectively? In particular, the part about providing example code.

Updated: Thanks for the clarification. You probably want to look at mod_auth_pam, an Apache module which allows you to do what want.

This is a fairly dangerous thing to do, unfortunately. It requires that you either run your Apache as root, so it will be allowed to read passwords from /etc/shadow and then switch to the appropriate user, or else have your script setuid to root, so it will acquire those privileges when it starts. Either way, a tiny bug in your script or in Apache could lead to your entire system being taken over, so unless you are very experienced with secure programming, you should try to avoid these techniques.

A different way to accomplish the same thing is to have a small server running as root and accepting a username, password, and a limited set of commands. Your script would get input from a form, send a command to this server, then interpret and display the results. That can be a little safer, because the server can be very simple and doesn't have to interact with a Web server.

Another way is to send username, password, and command to a local ssh server using Net::SSH; that way the ssh server handles most of the security code, and you just have to worry about getting it the right commands.

Your question isn't entirely clear, but if you mean the CGI application is password protected and you want the user/pass of whomever logged into that, then:-

If it's protected with htaccess...

CGI.pm's remote_user method will give you the username.

There's no equivalent method for passwords because most sane web servers purposely remove that information prior to running your script.

The only way to fix that would be to reconfigure your server, which may entail changing source code and recompiling the web server.

You should then be able to see the password somewhere in the %ENV hash. (If your web server ISN'T sane, you may already be able to find the password there.)

If it's protected via code in the CGI itself (eg, parsing a login form)...

Again, using CGI.pm, you can access the contents of a submitted form using the param method, so if you had fields named 'username' and 'password' in your login form, you'd access them with $q->param('username') and $q->param('password') respectively (assuming your CGI object was in $q).

If neither of these address your problem, then I refer you to idsfa's post above so that we can more fully understand your question.

Yes its protected with htaccess only. So how do we need to reconfigure the appache server. Any idea??
anyway i will post this in the apache mailing lists.

if you have any idea, please suggest.

thanks