From linux-return-88704-letty=mrakoplas.phil.muni.cz@linux.cz  Thu Sep  7 14:42:51 2000
Return-Path: <linux-return-88704-letty=mrakoplas.phil.muni.cz@linux.cz>
Received: from lvt.phil.muni.cz (root@lvt.phil.muni.cz [147.251.96.1])
	by mrakoplas.phil.muni.cz (8.8.7/8.8.5) with ESMTP id OAA23352
	for <letty@mrakoplas.phil.muni.cz>; Thu, 7 Sep 2000 14:42:51 +0200
Received: from aragorn.ics.muni.cz (aragorn.ics.muni.cz [147.251.4.33])
	by lvt.phil.muni.cz (8.9.3/8.8.5) with ESMTP id OAA02063
	for <letty@mrakoplas.phil.muni.cz>; Thu, 7 Sep 2000 14:42:51 +0200
Received: from odysseus.linux.cz (odysseus.fi.muni.cz [147.251.48.205])
	by aragorn.ics.muni.cz (8.8.5/8.8.5) with SMTP id OAA28051
	for <letty@mrakoplas.phil.muni.cz>; Thu, 7 Sep 2000 14:42:50 +0200 (MET DST)
Received: (qmail 9272 invoked by uid 30); 7 Sep 2000 12:41:27 -0000
Mailing-List: contact linux-help@linux.cz; run by ezmlm
Precedence: bulk
Reply-To: linux@linux.cz
Delivered-To: mailing list linux@linux.cz
Received: (qmail 9251 invoked from network); 7 Sep 2000 12:41:24 -0000
From: "Petr Novotny" <Petr.Novotny@antek.cz>
Organization: ANTEK CS
To: linux@linux.cz
Date: Thu, 7 Sep 2000 14:41:22 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-2
Subject: Re: Nefungujici suid u bash scriptu
Message-ID: <39B7A912.7634.10064BDD@localhost>
Priority: normal
In-reply-to: <F1E78CA6C0CED1118F690000F847DEDB025C24B4@chkexc1.chk.dec.com>
X-PM-Encryptor: QDPGP, 4
X-mailer: Pegasus Mail for Win32 (v3.12c)
Content-Transfer-Encoding: 8bit
X-MIME2LATIN2: 1 MIME parts converted to iso-8859-2
Status: RO
Content-Length: 1103
Lines: 34

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 7 Sep 2000, at 14:36, Korinek, Jan wrote:

> Co delam blbe, ja uz na to brejlim den a nic me nenapada

Rekl bych, ze chybny je predpoklad, ze lze delat suid skripty. 
Pouzijte sudo, nebo v nejhorsim suidperl.

(Ted vas skript by skutecne byla do nebe volajici dira, kdyby sel 
udelat suid root. Vzdyt si ani neohlidate nastaveni promenne 
PATH!)


-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8 -- QDPGP 2.61b
Comment: http://community.wow.net/grt/qdpgp.html

iQA/AwUBObd+41MwP8g7qbw/EQKRnACeOZXbXJMMgrsFYKBWFSYkZb9lJjUAoLuf
ViHlNsZDQHNtr6m+PyRkWNKw
=+Bhm
-----END PGP SIGNATURE-----
--
Petr Novotny, ANTEK CS
Petr.Novotny@antek.cz
http://www.antek.cz
PGP key ID: 0x3BA9BC3F
-- Don't you know there ain't no devil there's just God when he's drunk.
                                                             [Tom Waits]

---------------------------------------------------------------------------
Meta-FAQ (odhlášení, archív, FAQ a další): http://www.linux.cz/mailing-list
TIP: Konference o sprave Internetovych siti: net na listserv@cs.felk.cvut.cz

From linux-return-88705-letty=mrakoplas.phil.muni.cz@linux.cz  Thu Sep  7 14:45:06 2000
Return-Path: <linux-return-88705-letty=mrakoplas.phil.muni.cz@linux.cz>
Received: from lvt.phil.muni.cz (root@lvt.phil.muni.cz [147.251.96.1])
	by mrakoplas.phil.muni.cz (8.8.7/8.8.5) with ESMTP id OAA23388
	for <letty@mrakoplas.phil.muni.cz>; Thu, 7 Sep 2000 14:45:06 +0200
Received: from aragorn.ics.muni.cz (aragorn.ics.muni.cz [147.251.4.33])
	by lvt.phil.muni.cz (8.9.3/8.8.5) with ESMTP id OAA02187
	for <letty@mrakoplas.phil.muni.cz>; Thu, 7 Sep 2000 14:45:06 +0200
Received: from odysseus.linux.cz (odysseus.fi.muni.cz [147.251.48.205])
	by aragorn.ics.muni.cz (8.8.5/8.8.5) with SMTP id OAA28636
	for <letty@mrakoplas.phil.muni.cz>; Thu, 7 Sep 2000 14:45:05 +0200 (MET DST)
Received: (qmail 10446 invoked by uid 30); 7 Sep 2000 12:43:53 -0000
Mailing-List: contact linux-help@linux.cz; run by ezmlm
Precedence: bulk
Reply-To: linux@linux.cz
Delivered-To: mailing list linux@linux.cz
Received: (qmail 10437 invoked from network); 7 Sep 2000 12:43:49 -0000
Date: Thu, 7 Sep 2000 14:43:49 +0200 (StT)
From: Petr Simek <petrsi@jcu.cz>
To: "'LinuxCZ (E-mail)'" <linux@linux.cz>
Subject: Re: Nefungujici suid u bash scriptu
In-Reply-To: <F1E78CA6C0CED1118F690000F847DEDB025C24B4@chkexc1.chk.dec.com>
Message-ID: <Pine.WNT.3.96.1000907144135.-188225K-100000@helio.jcu.cz>
X-X-Sender: petrsi@marvin.jcu.cz
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=iso-8859-2
Content-Transfer-Encoding: 8bit
Status: RO
Content-Length: 1348
Lines: 33

On Thu, 7 Sep 2000, Korinek, Jan wrote:

> #!/bin/bash
> id
> 
> TMPFILE=`mktemp "$HOME/burn/$USER.cdcopy.XXXXXX"` || exit 1
> cat /dev/cdrom > "$TMPFILE" || exit $?
> eject /dev/cdrom || exit $?
> isovfy "$TMPFILE" || exit $?
> cdrecord -v -eject "$TMPFILE" || exit $?
> rm -i "$TMPFILE"
> - -------------------- End of paste ---------------------------------
> mi na zacatku neustale hlasi, ze ho spoustim ja, ale sakra kdyz ma
> nastaveno suid, sgid, tak by to mel byt root, ne?

:-) - to uz se tady parkrat resilo - skript nemuze byt suid jen binarka.
Osobne bych to resil pres sudo a root prikazy pouzite v tom skriptu pres
sudo. Taky se tu probiralo proc neni dobre poustet skript pres suid bit ;-)

> viz ls -l
> - -rwsr-s---    1 root     burn          482 záo  7 12:13 cdcopy

> |Jan Kořínek              |

*------------------------------------------------------------------------*
|                          Petr Simek   APS JU                           |
|                             petrsi@jcu.cz                              |
*------------------------------------------------------------------------*


---------------------------------------------------------------------------
Meta-FAQ (odhlášení, archív, FAQ a další): http://www.linux.cz/mailing-list
TIP: Konference o sprave Internetovych siti: net na listserv@cs.felk.cvut.cz