On Sun, Feb 04, 2001 at 09:44:43AM -0500, jteich wrote:
> I wanted to run a shell script program that needs to run with root permissions, and
>I wanted to
> be able to start this script without su'ing. I tried to set the suid bit on the
>program, but I
> found out that the suid bit only works for binary executables. Then I wrote a simple
>c program
> that starts up the shell program through the system() call, and I chown the program
>to root and
> set the suid bit on it, but for some reason the shell still wouldn't run as root.
>What am I
> doing wrong and is there any way aroud this?
This is not very secure, because there are many tricks that a user can
play on a suid shell. A better approach would be to see which commands
in the script need to run suid and only privelege these commands to
relevant users (by setting their suid bit or by writing a wrapper like
you did).
- Adi Stav
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
