Hi, all
I vaguely remember that suidperl (couldn't find its website, By the way?) was littered with security problems, and was (planned to be?) discontinued.
Yet, now i have to allow some CGI-invoked processes to be able to execute some perl scripts that really should be suid root, so my plan was to allow apache to call these scripts via sudo, and tell sudo not to prompt for a password.
additionally, the called scripts will (hopefully) do some additional checks regarding who called them when and how to determine whether everything's fine, and they wont take any arguments (just to avoid any potential pitfalls).
would somehting like that be 'secure enough', or is there some more elegant way to let CGI-scripts somehow do administrative work on a machine? how does webmin do this?
thanks,
-schweini
Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!
Titles consisting of a single word are discouraged, and in most cases are disallowed outright.
Read Where should I post X? if you're not absolutely sure you're posting in the right place.
Please read these before you post! —
Posts may use any of the Perl Monks Approved HTML tags:
- a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, details, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, summary, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr
You may need to use entities for some characters, as follows. (Exception: Within code tags, you can put the characters literally.)
| |
For: |
|
Use: |
| & | | & |
| < | | < |
| > | | > |
| [ | | [ |
| ] | | ] |
Link using PerlMonks shortcuts! What shortcuts can I use for linking?
See Writeup Formatting Tips and other pages linked from there for more info.