Tim McGeary wrote:
I have a perl script that runs on the command line that I need run as a
CGI on a webserver, but the system commands I'm using in the script
require that I run it as a specific user and will not let the webserver
user run them.
I've been investigating possibilities like Apache suEXEC, but that has
just been a big wall specifically because it is taking over all of my
cgi scripts that do not need to be controlled by suEXEC.
I found through some more investigation in Google that there is
something in Perl called the wrapsuid utility to make a suid wrapper,
but I can't find more information than just it is available.
I don't know anything about wrapsuid, but I have successfully controlled
the uid or gid of a single script via a C wrapper as described at
http://perldoc.perl.org/perlsec.html#Security-Bugs
--
Gunnar Hjalmarsson
Email: http://www.gunnar.cc/cgi-bin/contact.pl
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
http://learn.perl.org/
