[rt-devel] Can't do setuid
Jesse
jesse at fsck.com
Wed May 9 16:46:57 EDT 2001
It's now noted in the readme. at some point far down the line,
I may try to write up a sudo config file for using sudo to run the RT tools.
But that's low enough on the priority list for me to not get to it
in the next year or three. If someone wants to contrib one, that would be cool.
The longer term solution may be to make the CLI and mail gateways talk to
an 'RT server' process over some IPC mechanism.
-j
On Tue, May 08, 2001 at 11:49:17PM -0400, Alex Pilosov wrote:
> Yes, on some [many?] systems sperl isn't setuid because of _numerous_
> problems discovered with 5.005 suidperl (local root exploits).
>
> Should be a FAQ for RT, I guess.
>
> -alex
>
> On Tue, 8 May 2001, Alex Krohn wrote:
>
> > Hi,
> >
> > > > [alex at alex alex]$ ./test.pl
> > > > Can't do setuid
> > >
> > > I ran into the same problem with a FreeBSD 4.3-RELEASE install. It turned
> > > out that for some reason sperl (the suid root perl) wasn't suid. :-)
> > > After I fixed that, it worked fine. Dunno if this is a bug or a feature.
> >
> > Thanks! Figured it out. For anyone else who hits this:
> >
> > When you run a setuid perl script, perl will rerun the script using
> > sperl. Seems by default Mandrake installations ship sperl with no
> > permissions. Just look for sperl5.xxxx and make sure the permissions on
> > it are set properly and are suid.
> >
> > Seems to be the default for a number of systems, might be worth
> > mentioning in the readme.
> >
> > Cheers,
> >
> > Alex
> >
> > _______________________________________________
> > Rt-devel mailing list
> > Rt-devel at lists.fsck.com
> > http://lists.fsck.com/mailman/listinfo/rt-devel
> >
> >
>
>
--
jesse reed vincent -- root at eruditorum.org -- jesse at fsck.com
70EBAC90: 2A07 FC22 7DB4 42C1 9D71 0108 41A3 3FB3 70EB AC90
. . . when not in doubt, get in doubt. -- Old Discordian Proveb
More information about the Rt-devel
mailing list