Date: Fri, 11 Aug 2000 23:13:43 +0200 From: Neil Blakey-Milner <nbm@mithrandr.moria.org> To: Peter Wemm <peter@netplex.com.au> Cc: Warner Losh <imp@village.org>, Christopher Masto <chris@netmonger.net>, "Chris D. Faulhaber" <jedgar@fxp.org>, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/gnu/usr.bin/perl Makefile Message-ID: <20000811231343.A58966@mithrandr.moria.org> In-Reply-To: <200008112103.OAA92489@netplex.com.au>; from peter@netplex.com.au on Fri, Aug 11, 2000 at 02:03:09PM -0700 References: <200008111915.NAA36635@harmony.village.org> <200008112103.OAA92489@netplex.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri 2000-08-11 (14:03), Peter Wemm wrote: > Actually.. How does this sound: > > cat /usr/bin/suidperl > #! /bin/sh > echo "suidperl is not installed by default. blah blah danger etc. try:" > echo "cp /usr/bin/suidperl.real /usr/bin/suidperl" > echo "chmod 6111 /usr/bin/suidperl" > exit 1 > > and install suidperl as /usr/bin/suidperl.real with mode 444. Only install > the suidperl wrapper into /usr/bin if it is not already there. That > stops POLA by preventing blowing away a real /usr/bin/suidperl. > > If ENABLE_SUIDPERL is active, then unconditionally install suidperl in > /usr/bin/suidperl with the correct modes. #!/bin/sh if [ -u /usr/libexec/suidperl ]; then exec /usr/libexec/suidperl fi echo "suidperl is not installed with suid privilege by default" echo "If you know what you're doing, type chmod 4755 /usr/libexec/suidperl" exit 1 Neil -- Neil Blakey-Milner Sunesi Clinical Systems nbm@mithrandr.moria.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000811231343.A58966>