On Mon, 27 May 2002, Nick Thompson wrote: > What about: > > su - <user> -c <other_script> > > However, unless the first script is running as root, this will stop to > ask you for a password. >
Yes -- unless the account is passwordless. You can probably use expect to get around a passworded account, but since the pw would be in plain text within the expect script this would be just as insecure. I'm not really in favor of using sudo or wrapper scripts, however, since they have other security issues. It would be better to eliminate the reasons that SUID is needed, rather than trying to force a shell script to do things it shouldn't.
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
