Part1 - Part2 - Part3 - Part4 - Part5 - Single Page

Top Document: comp.unix.aix Frequently Asked Questions (Part 2 of 5)
Previous Document: 1.411: Why do I get the "Unable to connect socket: 3" starting Info-Explorer?
Next Document: 1.500 Which release of X11 do I have?

[ Usenet FAQs | Search | Web FAQs | Documents | RFC Index ]

1.412: Why can't I write a setuid shell script?


AIX, as of about the first release of 3.2.5* does not allow SUID scripts.
(It ignores the SUID and SGID bits on scripts.)  They're a huge security
hole.

If you really want to run a script SUID, you can create a small C program
that does a setuid(0) and then system()'s your script.  (Actually, the
setuid() call isn't necessary on all Unixes; IIRC, it's not on AIX 3.2.5,
but YYMV.)  Make the program SUID.  Be very careful.

There are other similar solutions.  You might also want to look into
sudo, which handles this sort of thing in a somewhat more controlled
manner

* Julianne Frances Haugh (jfh@tab.com) writes:

I raised an objection to set-ID shell scripts before AIX 3.1 was
golden.  ... it was finally done in the 3009 PTF for AIX 3.1.


Top Document: comp.unix.aix Frequently Asked Questions (Part 2 of 5)
Previous Document: 1.411: Why do I get the "Unable to connect socket: 3" starting Info-Explorer?
Next Document: 1.500 Which release of X11 do I have?

Part1 - Part2 - Part3 - Part4 - Part5 - Single Page

[ Usenet FAQs | Search | Web FAQs | Documents | RFC Index ]

Send corrections/additions to the FAQ Maintainer:
bofh@mail.teleweb.pt (Jose Pina Coelho)

Last Update May 13 2007 @ 00:21 AM