Gunnar Hjalmarsson wrote:
Tim McGeary wrote:
I have a perl script that runs on the command line that I need run as
a CGI on a webserver, but the system commands I'm using in the script
require that I run it as a specific user and will not let the
webserver user run them.
I've been investigating possibilities like Apache suEXEC, but that has
just been a big wall specifically because it is taking over all of my
cgi scripts that do not need to be controlled by suEXEC.
I found through some more investigation in Google that there is
something in Perl called the wrapsuid utility to make a suid wrapper,
but I can't find more information than just it is available.
I don't know anything about wrapsuid, but I have successfully controlled
the uid or gid of a single script via a C wrapper as described at
http://perldoc.perl.org/perlsec.html#Security-Bugs
I've heard dubious security issues about using a C wrapper
specifically... but I'm not sure how reliable those are. What would
you say to that?
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
http://learn.perl.org/
