On Thu, 11 Aug 2022 13:23:27 -0500, Mark Zelden wrote:
>
>ISHELL in batch won't work, but this "trick" with BPXBATCH will. The key is
>using
>"echo" and piping the commend to "su".
>
I see that clearly in the Commands Ref.
What about Rexx: ADDRESS SYSCALL 'setuid'? Does that change the euid
of the TSO calling process?
I know that in Rexx invoked from (ISPF under) TSO I can:
ADDRESS SYSCALL 'chdir' ...
and that changes the working directory of my TSO job. Would 'setuid' work
similarly?
What about "sudo", not distributed with z/OS, but on Linux:
501 $ ps
PID TTY TIME CMD
15319 pts/0 00:00:00 bash
15342 pts/0 00:00:00 ps
502 $
502 $ sudo id
[sudo] password for paulgilm:
uid=0(root) gid=0(root) groups=0(root)
503 $
503 $ ps
PID TTY TIME CMD
15319 pts/0 00:00:00 bash
15345 pts/0 00:00:00 ps
504 $
504 $ sudo id
uid=0(root) gid=0(root) groups=0(root)
505 $
505 $ ps
PID TTY TIME CMD
15319 pts/0 00:00:00 bash
15349 pts/0 00:00:00 ps
# ### pid is unchanged, but euid *is* changed. Does sudo muck with
# kernel structures!? It expires after a while.
506 $
506 $ type sudo
sudo is hashed (/usr/bin/sudo)
507 $
507 $ ls -l /usr/bin/sudo
-rwsr-xr-x 1 root root 157192 Jan 20 2021 /usr/bin/sudo
508 $
508 $ id
uid=1000(paulgilm)
gid=1000(paulgilm)groups=1000(paulgilm),24(cdrom),25(floppy),27(sudo),29(audio),30(dip),44(video),46(plugdev),101(systemd-journal),109(netdev),998(vboxsf)
509 $
--
gil
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
