Re: Chown as regular user?
From: Michael Heiming (michael+USENET_at_www.heiming.de)
Date: 05/26/05
- Next message: Stachu 'Dozzie' K.: "Re: Chown as regular user?"
- Previous message: SimonV: "Re: Chown as regular user?"
- In reply to: SimonV: "Chown as regular user?"
- Next in thread: Stachu 'Dozzie' K.: "Re: Chown as regular user?"
- Reply: Stachu 'Dozzie' K.: "Re: Chown as regular user?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 26 May 2005 12:45:45 +0200
In comp.os.linux.security SimonV <Simon.vanherweghe@gmail.com>:
> Hi,
> I'm working on a web-based hosting administration in php. (Debian
> Linux)
> For the creation of new web directories and other server manipulations,
> I use perl scripts that I've set-uid to a user who has the rights in
> those directories.
> Everything works fine so far, but now, the mail and ftp directory
> should have their own user and group i.o. the user who created them.
> But I've just read in a book that only a root user can do a chown...
> I've tested it, and indeed, it isn't possible to do it, except when I'm
> root.
> And it isn't that safe to set-uid my scripts as root user.
Sure it is, the kernel will happily ignore the SUID bit on
scripts.;)
> Is there a work-around for this?
A carefully designed script running through sudo might be
possible, but still dangerous. What about setting GID on the
directory?
-- Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94) mail: echo zvpunry@urvzvat.qr | perl -pe 'y/a-z/n-za-m/' #bofh excuse 309: firewall needs cooling
- Next message: Stachu 'Dozzie' K.: "Re: Chown as regular user?"
- Previous message: SimonV: "Re: Chown as regular user?"
- In reply to: SimonV: "Chown as regular user?"
- Next in thread: Stachu 'Dozzie' K.: "Re: Chown as regular user?"
- Reply: Stachu 'Dozzie' K.: "Re: Chown as regular user?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
