Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 28 Aug 2002 09:41:28 +0930
From:      Greg Lewis <glewis@eyesbeyond.com>
To:        Ernst de Haan <znerd@FreeBSD.ORG>
Cc:        dan_256@yahoo.com, K.J.Koster@kpn.com, freebsd-java@FreeBSD.ORG
Subject:   Re: Jboss3ctl update (I think I know the problem)
Message-ID:  <20020828094127.A58001@misty.eyesbeyond.com>
In-Reply-To: <200208270901.14099.znerd@FreeBSD.org>; from znerd@FreeBSD.ORG on Tue, Aug 27, 2002 at 09:01:14AM %2B0200
References:  <20020826231204.23827.qmail@web13406.mail.yahoo.com> <200208270901.14099.znerd@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Tue, Aug 27, 2002 at 09:01:14AM +0200, Ernst de Haan wrote:
> > He's right, you can't SUID a script.  But this is precisely the problem
> > because the .java_wrapper script itself can never set the environment
> > variables.  So, even if you could SUID the script, it would still have
> > the same problem that the "real user" is not the "effective user."  The
> > only real solution is to make java not require the .java_wrapper script,
> > because only then can you run the binary as another (non-root) user. As
> > long as the .java_wrapper script sets up an environment for java each
> > time it is run, no SUID program will work, because that ENV will be
> > ignored.  SUID does not work in either case.  It does SUID with the C
> > program, but that doesn't help because the ENV will die in that case. 
> > Either way is broken.  Static Java anyone? -Dan
> 
> Ah! Now that's IMO a clear explanation! Now just provide the static Java 
> binary and off we go! ;-)

Since it has only one threading subsystem, 1.4 uses a natively executable
java rather than a shell script wrapper.  Its not static in the usual sense
of the word, but I think Dan was using that term in respect to a native
executable rather than an interpreted script.
-- 
Greg Lewis                          Email   : glewis@eyesbeyond.com
Eyes Beyond                         Web     : http://www.eyesbeyond.com
Information Technology              FreeBSD : glewis@FreeBSD.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-java" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020828094127.A58001>