Re: Chown as regular user?

From: Michael Heiming (michael+USENET_at_www.heiming.de)
Date: 05/26/05 

Date: Thu, 26 May 2005 15:33:56 +0200

In comp.os.linux.security Stachu 'Dozzie' K. <dozzie@dynamit.im.pwr.wroc.pl.nospam>:
> On 26.05.2005, Michael Heiming <michael+USENET@www.heiming.de> wrote:
>> In comp.os.linux.security SimonV <Simon.vanherweghe@gmail.com>:
>>> Hi,
>>> I'm working on a web-based hosting administration in php. (Debian
>>> Linux)
>>> For the creation of new web directories and other server manipulations,
>>> I use perl scripts that I've set-uid to a user who has the rights in
>>> those directories.
>>> Everything works fine so far, but now, the mail and ftp directory
>>> should have their own user and group i.o. the user who created them.
>>> But I've just read in a book that only a root user can do a chown...
>>> I've tested it, and indeed, it isn't possible to do it, except when I'm
>>> root.
>>
>>> And it isn't that safe to set-uid my scripts as root user.
>>
>> Sure it is, the kernel will happily ignore the SUID bit on
>> scripts.;)

> Have you heard about suidperl?

That's more or less the same as using sudo, a wrapper running
with rootly powers will call your script, again SUID bits on
scripts will be happily ignored by the Linux kernel as it should
be. 

-- 
Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94)
mail: echo zvpunry@urvzvat.qr | perl -pe 'y/a-z/n-za-m/'
#bofh excuse 249: Unfortunately we have run out of
bits/bytes/whatever. Don't worry, the next supply will be
coming next week.

Relevant Pages

  • Re: cx88 totally fried in 2.6.15-rcX -was- Re: HD3000 - no NTSC via tuner
    ... On Monday 28 November 2005 20:17, Michael Krufky wrote: ... as it would apply to a working 2.6.14.x kernel. ... that I comment/uncomment stuff in the buildit (thats another script I ... message by Gene Heskett are: ...
    (Linux-Kernel)
  • Re: 2.6.22-rc5 regression
    ... Bisecting: 128 revisions left to test after this ... of the fact that I use the same directory tree to build the kernel ... [torvalds@woody linux]$ git bisect bad v2.6.22-rc5 ... -# Simple script to generate a deb package for a Linux kernel. ...
    (Linux-Kernel)
  • Re: When was /dev/cua* depreciated?
    ... but that first script edits startup scripts itself! ... Actually the kernel module bit is the best quality by far, ... assumed that any shipped software will be entirely useless and must be ...
    (uk.comp.os.linux)
  • Re: [TOOL] kprobestest : Kprobe stress test tool
    ... This tool list up all symbols in the kernel via /proc/kallsyms, ... Finally, the script sorts all 'passed' symbols into 'tested', 'untested', ... each culprit in these lists. ... Hardware name: Deskpro EN Series ...
    (Linux-Kernel)
  • Re: **Caution-External**: Re: USB hotplug woes
    ... script before it has actually done any of the volume discovery. ... The goal is that if someone where to stick in an USB flash drive, ... Further more I tried the 2.6 kernel and the machine just went nuts only ... Do you want the script to autorun whe the usb device is pluged in? ...
    (Debian-User)