Date: Thu, 14 Nov 2002 15:30:47 +0300 From: "Nickolay A. Kritsky" <nkritsky@internethelp.ru> To: Kirk Bailey <idiot1@netzero.net> Cc: "security@FreeBSD.ORG" <security@FreeBSD.ORG> Subject: Re: list scripts, permissions, and ownerships. Message-ID: <6080042384.20021114153047@internethelp.ru> In-Reply-To: <3DD32C5A.9784D742@netzero.net> References: <3DD32C5A.9784D742@netzero.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello Kirk, Thursday, November 14, 2002, 7:53:46 AM, you wrote: KB> I have a problem. I am writing a script to create lists, and another to destroy KB> them- that is, MAIL lists, such as mailman, majordomo, and mojomail and tinylist KB> all work with. (I write TinyList.) KB> The aliases file must have certain permissions, and it appears to be 644 in my KB> freebsd box- hope that's correct, but it works fine. And the ownership is root, KB> and that works fine. KB> well, apache in the box is nobody:wheel and runs scripts as such. I have the KB> scripts owned nobody:wheel also. They run, but it cannot access the aliases KB> file-permissions/ownerships. OK, changed the relevant scripts' ownerships to KB> root (gasp!) and tried to run things that way. still no luck. Scripts apparently KB> are running as nobody, even though owned by root. KB> OK, a few questions. KB> First, how to I get a script to discover what identity it is running as? id(1) whoami(1) KB> Second, how can I insure it runs as a particular identity(so as to be compatable KB> with the email system), when run by the web server? apache has some feature called `suexec'. I think it can help you. Search the apache manual. ;------------------------------------------- ; NKritsky ; mailto:nkritsky@internethelp.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6080042384.20021114153047>