On Tue, 2003-09-02 at 20:29, Woon Wai Keen @ doubleukay.com wrote: > ----- Original Message ----- > From: "mario ohnewald" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Tuesday, September 02, 2003 3:53 AM > Subject: execute application from webinterface > > > > What is the securest way of starting a application, like ping, from a > > webinterface as a diffrent user. > > Lets say, to run ping 123.456.789.000 as user user123. > > > > If i use "system", it executes it as www-data. > > > > Any idea how i could solve this problem? > > With php, perl, bash, etc... ? > > sudo can do this , and is probably universal across php/perl/bash/anything > that can execute system commands :) > > first : visudo > then add : www-data ALL=(ALL) NOPASSWD: /bin/ping 123.456.789.000 > > save, and then from your web app, call system("sudo /bin/ping > 123.456.789.000") !
Why involving sudo?! You have suexec that came with apache, pretty little thing that do very well. Write your script for pinging, chown to user and that's it. -- v , v v Zeljko Brajdic - Zorz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]