Date: 26 Dec 2002 11:24:30 -0500 From: Lowell Gilbert <freebsd-questions-local@be-well.no-ip.com> To: freebsd-questions@freebsd.org Subject: Re: Run as owner Message-ID: <44vg1g3g01.fsf@be-well.ilk.org> In-Reply-To: <3E0B2A1C.1080503@netzero.net> References: <3DE83EE1.60400@netzero.net> <200211301028.10083.ph1@cogeco.ca> <05db01c29890$6befb7a0$fa00a8c0@DaleCoportable> <3E0B2A1C.1080503@netzero.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Kirk Bailey <idiot1@netzero.net> writes: > Nope, I wrote a script that simply wran ID as a command and printed > the result, and ran it as my id of howlermo, although it was owned by > root. It wran as howlermo. I then ran it as grumpy. It ran as > grumpy. I then ran it as su, it ran as su. Permission was 755, so > anyone could run it, and w hoever ran it, it ran as; it assumes the id > of the person running it. Hmmm... Scripts don't honor setuid bits. [For rather important security reasons.] I'd be surprised if there was really a manual page that said otherwise. > Kevin D. Kinsey, DaleCo, S.P. wrote: > > From: "david" <ph1@cogeco.ca> > > Subject: Re: Run as owner > > On Friday 29 November 2002 23:30, Kirk Bailey wrote: > > > >>OK, man says to get a script to run as the owner, turn on the 4000 > > bit. > > > >>OK, I did. No such luck, it continues to run as the apache identity > >>'nobody'. > > david: I'm just wondering, why is this a problem? > > I believe it's 'cuz he wants the script to build or destroy > > /etc/mail/aliases......check out some earlier posts under > > different thread names, perhaps. > > Kevin Kinsey > > DaleCo, S.P. > > > > > -- > > end > > Respectfully, > Kirk D Bailey > > > +---------------------"Thou Art Free." -Eris-----------------------+ > | http://www.howlermonkey.net mailto:highprimate@howlermonkey.net | > | KILL spam dead! http://www.scambusters.org/stopspam/#Pledge | > | http://www.tinylist.org +--------+ mailto:grumpy@tinylist.org | > +------------------Thinking| NORMAL |Thinking----------------------+ > +--------+ > > --------------------------------------------- > Introducing NetZero Long Distance > 1st month Free! > Sign up today at: www.netzerolongdistance.com > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44vg1g3g01.fsf>