[clue-tech] suid
Keith Hellman
khellman at mcprogramming.com
Thu Feb 12 10:25:40 MST 2009
On Thu, Feb 12, 2009 at 02:05:06PM +0000, Jason S. Friedman wrote:
> I have an executable X owned by root that can do A, B and C, depending
> on the command-line switches used when invoking X. I want to grant
> ordinary users the privilege to do A and B, but not C. So, I considered
I would consider a bash script that looks at $(basename ${0}) to
determine which of A, B, and C should be done.
Then make the appropriate symlinks.
Then configure sudo appropriately for password-less access to the A and
C script.
Just my 2c.
--
Keith Hellman #include <disclaimer.h>
khellman at mcprogramming.com from disclaimer import standard
khellman at mines.edu
-*-
public key @ pgp.mit.edu 9FCF40FD
Y!M: mcprogramming AIM/ICQ: 485403897
gtalk (xmpp jabber): mrtuple at jabber.org, jabber at mcprogramming.com
-*-
I would point out that linked lists, mark-and-copy garbage collection, and the
Tab key are all patented too. Somebody who always carefully checked first for
software patents would never write anything at all.
-- Martin Pool (rsync developer)
http://rsync.samba.org/rsync-and-debian/rsync-and-debian.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
Url : http://cluedenver.org/pipermail/clue-tech/attachments/20090212/5ae4122f/attachment.bin
More information about the clue-tech
mailing list