Re: Re: Hiding passwords in scripts...

Basically system stuff on systems where people are allowed shell access...

For ISPs, depending on their setup, web based isn't the best, necessarily... If they aren't set up with suexec or something similar, though I guess they probably should be, still.. on a shell system it's not as simple as suexec...
- Ant

Comment on Re: Re: Hiding passwords in scripts...

Replies are listed 'Best First'.
Re^3: Hiding passwords in scripts... by tadman (Prior) on Apr 13, 2001 at 19:55 UTC
On a shell system, you can have a gateway 'suid' program that controls access to your application/module. You have to be careful about '-T'aint checking when you do this, though, to avoid being exploited. `#!/usr/bin/perl -wT use strict; use MyModule; # Your important module(s) # Now do something as the suid user MyModule::DoSomething();` [download] Then set it to `-rwsr-xr-x` suid: `% chmod 4755 theprogram`	[reply] [d/l] [select]

Replies are listed 'Best First'.

Re^3: Hiding passwords in scripts...
by tadman (Prior) on Apr 13, 2001 at 19:55 UTC

    #!/usr/bin/perl -wT

    use strict;
    use MyModule;   # Your important module(s)

    # Now do something as the suid user
    MyModule::DoSomething();
[download]

-rwsr-xr-x

% chmod 4755 theprogram

[reply]
[d/l]
[select]