Re: new suid-perl debian security update breaks qmail-scanner! [SOLVED]

[Patrick Donker <list@webpagina.nu>]

Turbo Fredriksson wrote:

> Quoting Patrick Donker <list@webpagina.nu>:
>
>  
>
> > People,
> > I found this in the archive and am experiencing the same problem.
> > I have replaced the line SUIDPERL="${SUIDPERL:-$dir/suidperl}" with
> > SUIDPERL="${SUIDPERL:-$dir/perl}on line 754 of the ./configure script
> > (qmail-scanner 1.25), but I still keep on getting the error as
> > described below.
> > I am running Sarge with perl-suid 5.8.4-8. How can I fix this because
> > I am stuck :(
> >    
>
> I've made packages for my woody system(s):
> /pub/debian/dists/woody-ol2.2/source/Qmail/qmail-scanner_1.22-8.diff.gz
> /pub/debian/dists/woody-ol2.2/source/Qmail/qmail-scanner_1.22-8.dsc
> /pub/debian/dists/woody-ol2.2/source/Qmail/qmail-scanner_1.22-8_i386.changes
> /pub/debian/dists/woody-ol2.2/source/Qmail/qmail-scanner_1.22.orig.tar.gz
>
> They have this fix. The problem is that SUID perl script should NOT
> run '/usr/bin/suidperl' but only '/usr/bin/perl' (but be suid).
>
> In my package, I fix this and a whole lot more. I see no reason why the
> building of the 'binary' package shouldn't work on sarge...
>  
I've compiled the wrapper and that solved the problem. Still I think 
that the Perl advisory should be followed and have perl do the suid and 
not directly running suidperl.

-Patrick