set effective user to root 1572
IF the program can only alter one single file, that is much better. The way I read your request was that the program was supposed to be alter ANY file owned by root. You then have to make sure that the person running it cannot make it into a program which could alter any file.
??? The discussion is about exactly this I thought.
Too often people come here convinced that they have found THE answer to their problem, and ask for help in implimenting their answer rather than solving their problem. After much tooing and froing, they finally tell us teh problem and lots of people come up with solutions the person had never thought of.
A suid program is a dangerous thing. Sometimes it is necessary, which is why a few suid programs exist. But they are typically programs where the people writing them have spent a lot of time thinking through the security implications, and making sure that the program cannot be used to get root-- to alter things it should not be able to.
On Mon, 05 Jun 2006 22:03:03 +0000, Andre Kostur It is the second, with some additions. The requirements: 1: a. Normal users may neither read nor write the...
There is an advantage to having suid root, since the program can keep root only long enough to do what absolutely has to be done as root, and then give up root. This is better than for example running the program sudo, in which case the program is always running as root. But the writer of such a program must be careful.
On Tue, 06 Jun 2006 00:55:54 +0000, Unruh I wonder how one should judge your opinion of what makes sense. There are numerous situations that arise in mathematics and physics where knowledge of...