From owner-freebsd-questions@FreeBSD.ORG Fri May 13 20:16:49 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CCD9F106564A for ; Fri, 13 May 2011 20:16:49 +0000 (UTC) (envelope-from kraduk@gmail.com) Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id 5E8048FC0C for ; Fri, 13 May 2011 20:16:48 +0000 (UTC) Received: by wwc33 with SMTP id 33so3184280wwc.31 for ; Fri, 13 May 2011 13:16:48 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=JdDlvTy9Zom7MzodBU8AnNxjo6zyYuDMb5MXAw67fkg=; b=WjCuTqQpABJ6gGmN+1zVhZbk/LIIt5HsO6BJWPPhG3KZV3sZ4yrqyczsTC5ebrRS6v 44t/GsItSJnL4XBQbO+c+NpPnD8EHZUNWp7TkbP35hgRvZYM1Iy1y4AnrOXLxo8v+XLx fORMlRINiu46iXAtaMTxoyXvn7DLP2h5dv4aI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=SXzhvF2K9gTcB84hYsTvswiObV3uB7zAr0X+mly/ah4Mxo8O5JrUzpJd7xJ0G981LF kXD/dOSRxcYJ5sXOJ28u6XTOhifOCpSqmFJ98/PdfGUw39B2xrpnWm7StBTjRr5FlicH u+/zqrnn4pfS+soCwdt5lGymiyu20TEqUOFKU= MIME-Version: 1.0 Received: by 10.216.241.78 with SMTP id f56mr1743684wer.76.1305317807995; Fri, 13 May 2011 13:16:47 -0700 (PDT) Received: by 10.216.90.145 with HTTP; Fri, 13 May 2011 13:16:47 -0700 (PDT) In-Reply-To: <86k4duh4q9.fsf@gmail.com> References: <4DC9DE2C.6070605@telting.org> <201105121657.57647.j.mckeown@ru.ac.za> <4DCBFC39.8060900@telting.org> <201105130932.32144.j.mckeown@ru.ac.za> <4DCD02EF.7050808@telting.org> <86k4duh4q9.fsf@gmail.com> Date: Fri, 13 May 2011 21:16:47 +0100 Message-ID: From: krad To: Pan Tsu Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: Chris Telting , "freebsd-questions@freebsd.org" Subject: Re: Established method to enable suid scripts? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 May 2011 20:16:49 -0000 C On Friday, 13 May 2011, Pan Tsu wrote: > Chris Telting writes: > >> On 05/13/2011 01:32, krad wrote: >>> what i cant understand is the complete aversion to sudo. Could you >>> shed any light on why you are trying to avoid a tried and tested >>> method. >> >> That I freely admit is for no rational reason. It's just annoying. But > > ...a shebang can be written with sudo in mind, e.g. > > =A0#! /usr/bin/env -S sudo sh > =A0id > > =A0$ ./foo.sh > =A0uid=3D0(root) gid=3D0(wheel) groups=3D0(wheel),5(operator) > =A0$ ls -l > =A0-rwxr-xr-x =A01 luser luser 31 May 13 21:36 foo.sh > >> let me ask you.. is "sudo ping" acceptable? Please explain the logical >> reason why not. It would be the preferred method if suid didn't exist >> and sudo was part of the base system. > I'm still bemused to why unless it just an academic exercise