Re: execute application from webinterface

To: <debian-security@lists.debian.org>
Subject: Re: execute application from webinterface
From: "Woon Wai Keen @ doubleukay.com" <doubleukay@doubleukay.com>
Date: Wed, 3 Sep 2003 02:29:59 +0800
Message-id: <[🔎] 0c5701c37180$393da640$0100a8c0@k1>
References: <[🔎] MKEHIJCBHHEMOIECDAKPOEILCAAA.mario.ohnewald@gmx.de>

----- Original Message ----- 
From: "mario ohnewald" <mario.ohnewald@gmx.de>
To: <debian-security@lists.debian.org>
Sent: Tuesday, September 02, 2003 3:53 AM
Subject: execute application from webinterface


> What is the securest way of starting a application, like ping, from a
> webinterface as a diffrent user.
> Lets say, to run ping 123.456.789.000 as user user123.
>
> If i use "system", it executes it as www-data.
>
> Any idea how i could solve this problem?
> With php, perl, bash, etc... ?

sudo can do this , and is probably universal across php/perl/bash/anything
that can execute system commands :)

first    : visudo
then add : www-data ALL=(ALL) NOPASSWD: /bin/ping 123.456.789.000

save, and then from your web app, call system("sudo /bin/ping
123.456.789.000") !

regards,
wK (www.doubleukay.com)

Reply to:

References:
- execute application from webinterface
  - From: "mario ohnewald" <mario.ohnewald@gmx.de>

Prev by Date: Re: execute application from webinterface
Next by Date: RE: execute application from webinterface
Previous by thread: Re: execute application from webinterface
Next by thread: Re: 2.4.21 IPSEC problems
Index(es):
- Date
- Thread