how to use setuid permission for a perl program? - 未名空间MITBBS历史存档

国际科技财经博客移民网络热点娱乐民生时事公众号

Redian新闻

>未名空间

>Unix - 噫吁兮，危乎高哉

how to use setuid permission for a perl program?

how to use setuid permission for a perl program?# Unix - 噫吁兮，危乎高哉

s*l2002-10-13 07:10

1 楼

I have a perl program which will create a file. I set the setuid permission
for the perl program, say: chmod 6755 myperl.pl
Then, when I execute it as other users, either the created file is owned by
another user (say, root), or an error happened and the program can not be
run by others:
Insecure ENV{$PATH} ....
How to deal with this? Thanks a lot.

p*f2002-10-13 07:10

2 楼

you are adviced to explicitly set the $PATH env var in a setuid perl
program, read 'man perlsec' for details.

【在 s*******l 的大作中提到】

: I have a perl program which will create a file. I set the setuid permission
: for the perl program, say: chmod 6755 myperl.pl
: Then, when I execute it as other users, either the created file is owned by
: another user (say, root), or an error happened and the program can not be
: run by others:
: Insecure ENV{$PATH} ....
: How to deal with this? Thanks a lot.

s*l2002-10-13 07:10

3 楼

What if the perl tries to install some program? Who will be the owner?
Thanks a lot.

【在 p******f 的大作中提到】

:
: you are adviced to explicitly set the $PATH env var in a setuid perl
: program, read 'man perlsec' for details.

p*f2002-10-13 07:10

4 楼

the owner of the perl executable, if setuid.
the person who runs the executable, otherwies.

【在 s*******l 的大作中提到】

: What if the perl tries to install some program? Who will be the owner?
: Thanks a lot.

o*z2002-10-13 07:10

5 楼

save the effective uid at the beginning by $euid=$EUID (if you use English)
then set it back to the real UID by saying $EUID=$UID
switch back to enhanced permission by $EUID=$euid only when necessary
and reduce to normal permission as early as possible

【在 s*******l 的大作中提到】