Re: more chmod

To: Default Debian Reader <debianuser@jkeating.static.execpc.com>, debian-user@lists.debian.org
Subject: Re: more chmod
From: Hamish Moffatt <hamish@debian.org>
Date: Wed, 9 Sep 1998 00:15:26 +1000
Message-id: <[🔎] 19980909001526.A11779@yodeller.rising.com.au>
Mail-followup-to: Default Debian Reader <debianuser@jkeating.static.execpc.com>, debian-user@lists.debian.org
In-reply-to: <[🔎] m0zGO1S-000RhrC@jkeating>; from Default Debian Reader on Tue, Sep 08, 1998 at 08:41:30AM -0500
References: <[🔎] m0zGO1S-000RhrC@jkeating>

On Tue, Sep 08, 1998 at 08:41:30AM -0500, Default Debian Reader wrote:
> Is there a way to have a second script called from a first script still
> setuid?  Ok here is the situation user x runs script a, script a is a normal
> script that grabs a file owned by user b, script a then calls script y which
> is setuid to userb so it can change that file grabbed by script a.  It seems
> that when a script is called from another script it isn't really setuid because
> when i write a new file it doesn't write it under the suid'd id it writes
> it under the original id.  Is there a way to get this to work the way i want
> it (prehaps with an exec or something?) or no?  Thanks for any help

There are no setuid scripts on Linux, nor other Unixen AFAIK.
They are simply too insecure. perl has perlsuid exactly for this reason.

Nothing you can do (except hack the kernel source) will fix this.
If you want custom setuid programs, write them in C or perlsuid.

Hamish
-- 
Hamish Moffatt VK3TYD              hamish@debian.org, hamish@rising.com.au
Latest Debian packages at ftp://ftp.rising.com.au/pub/hamish. PGP#EFA6B9D5
CCs of replies from mailing lists are welcome.   http://hamish.home.ml.org

Reply to:

References:
- more chmod
  - From: debianuser@jkeating.static.execpc.com (Default Debian Reader)

Prev by Date: Apache 1.3 + SSL + PHP + PGSQL
Next by Date: Which packages for c++ development?
Previous by thread: more chmod
Next by thread: pine
Index(es):
- Date
- Thread