suid policy

To: debian-perl@lists.debian.org
Subject: suid policy
From: lars <lists@sumpfralle.de>
Date: Sun, 4 Dec 2005 14:44:40 +0100
Message-id: <[🔎] 20051204144440.38b44f45@staub>

Hi,
I want to package a perl web-interface that needs root permissions for some
operations. As the perl-suid package is marked as deprecated, I am not sure,
how to do this in the good debian way ...
Maybe you could give me some hints.

The perl-cgi should be able to execute the following actions:
- use cryptsetup for partitions
- mount/umount _arbitrary_ mapped devices
- partition harddisks

For now I see the following options:
- write a short binary wrapper with suid permissions
- move all routines, that need root permission to a seperate script and add an
entry to /etc/sudoers for it

It does not seem to be sufficient, to just set the right permissions on selected
block devices, as only root may mount something without an entry to fstab.

Do you have any suggestions?

thanks,
Lars

Reply to:

Follow-Ups:
- Re: suid policy
  - From: "C. Chad Wallace" <cwallace@thelodgingco.com>

Next by Date: Re: suid policy
Next by thread: Re: suid policy
Index(es):
- Date
- Thread