[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: "setuid(UID)" and "chmod 4550" misbehaving

On Tue, Jun 22 at 12:55PM +0800, John Summerfield wrote:
> Will Trillich wrote:
> >On Tue, Jun 22 at 08:41AM +0800, John Summerfield wrote:
> >>Why would you not use sudo?
> >
> >you mean, have apache use sudo to change a user's email (sasl)
> >password? the purpose of this gizmo is to have the web server
> >set up to allow users to change their own passwords via a web
> >interface.
> >
> Why not? It's _exactly_ what you're trying to do with the
> setuid program. Eiher way you must authenticate the user, then
> run "some program" to make the update. Sudo is already there,
> and works. Your C program isn't yet debugged.

the c program was downloaded as a plugin from squirrelmail.org
and i presume SOMEONE somewhere got it to work. i've modified it
since, trying to find the speed bump...

> From a security stand-point I don't see the difference.

well, it's something to try. won't solve the mystery as such, but
it might solve the original problem. never thought of using sudo
from apache. :)

good idea. thanks!

-- 
I use Debian/GNU Linux version 3.0;
Linux boss 2.4.18-bf2.4 #1 Son Apr 14 09:53:28 CEST 2002 i586 unknown
 
DEBIAN NEWBIE TIP #31 from Will Trillich <will@serensoft.com>
:
Ever wonder why Debian STABLE SEEMS OUT-OF-DATE? It's because
it's STABLE! When enough testing shows a release to be worthy
of the "stable" name, it's frozen -- nothing new can be added
to it. Gizmo 57.3 might come out the next day, but it won't
show up in the stable release. If you want to be on the
bleeding edge, try "testing" or "unstable". If you want solid
dependability, stick with "stable" and use tried-and-true
packages instead of the newfangled ones that might break.

Also see http://newbieDoc.sourceForge.net/ ...
Reply to: