Date: Tue, 27 Aug 2002 09:01:14 +0200 From: Ernst de Haan <znerd@FreeBSD.ORG> To: dan_256@yahoo.com, K.J.Koster@kpn.com, freebsd-java@FreeBSD.ORG Subject: Re: Jboss3ctl update (I think I know the problem) Message-ID: <200208270901.14099.znerd@FreeBSD.org> In-Reply-To: <20020826231204.23827.qmail@web13406.mail.yahoo.com> References: <20020826231204.23827.qmail@web13406.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> He's right, you can't SUID a script. But this is precisely the problem
> because the .java_wrapper script itself can never set the environment
> variables. So, even if you could SUID the script, it would still have
> the same problem that the "real user" is not the "effective user." The
> only real solution is to make java not require the .java_wrapper script,
> because only then can you run the binary as another (non-root) user. As
> long as the .java_wrapper script sets up an environment for java each
> time it is run, no SUID program will work, because that ENV will be
> ignored. SUID does not work in either case. It does SUID with the C
> program, but that doesn't help because the ENV will die in that case.
> Either way is broken. Static Java anyone? -Dan
Ah! Now that's IMO a clear explanation! Now just provide the static Java
binary and off we go! ;-)
Ernst
--
Ernst de Haan
EuroNet Internet B.V.
"Come to me all who are weary and burdened
and I will give you rest" -- Jesus Christ
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-java" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200208270901.14099.znerd>