Date: Sat, 12 Jan 2002 08:42:30 -0600 From: "Mike Meyer" <mwm-dated-1011278550.a3133f@mired.org> To: Milo Hyson <milo@cyberlifelabs.com> Cc: questions@freebsd.org Subject: Re: Setuid. Message-ID: <15424.19286.197466.850413@guru.mired.org> In-Reply-To: <121654390@toto.iv>
next in thread | previous in thread | raw e-mail | index | archive | help
Milo Hyson <milo@cyberlifelabs.com> types: > On Thursday 03 January 2002 09:23 am, Dave Raven wrote: > > Why am I getting?: > > su-2.05$ /usr/optec/bwutil.pl > > Can't do setuid > > By default, FreeBSD doesn't allow scripts (Perl included) to run as SUID. > It's a potential security problem. There is a way to disable this, but I'm > not sure what the procedure is. I think it's an option in the kernel. > > Actually, I would like to know a decent solution to this issue. I often need > SUID Perl scripts myself, and I don't want to have to disable security > features or resort to a C wrapper. You can't have it both ways. You either have to take the security problems of suidperl - which exists to work around the security problems inherent in suid interpreted scripts in general - or have a C wrapper. You might want to look into sudo, which can be viewed as a configurable C wrapper. <mike -- Mike Meyer <mwm@mired.org> http://www.mired.org/home/mwm/ Independent WWW/Perforce/FreeBSD/Unix consultant, email for more information. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?15424.19286.197466.850413>