Daniel Browne wrote:
> [posted to rush.general]
>
> This is a bit off topic, but I thought if anyone knew it would be you, Greg=
> . Is there a way to do SUID perl scripts in MacOS X 10.6? I know some time =
> ago the direct method of setting the SUID permissions bit on a script was b=
> locked by Apple because of the security issue. Do you know of an alternativ=
> e mechanism, other than resorting to C binary wrappers or sudo commands? I =
> can't find perlsec or suidperl executables in the standard Mac install.
It's disabled by default on ALL platforms.
It's the kernel that handles the #! stuff, so to turn it on would
be a kernel tweak, so I'd expect sysctl would let you control it;
see 'sysctl -a | grep script'
But sudo and binary C wrappers are the approach I usually use,
and in the case of C wrappers, carefully perm their execution bits
so that only the appropriate users can run them.
--
Greg Ercolano, erco@(email surpressed)
Seriss Corporation
Rush Render Queue, http://seriss.com/rush/
Tel: (Tel# suppressed)
Fax: (Tel# suppressed)
Cel: (Tel# suppressed)
|