Hi,
I've got the following problem with PHP5.0 :
index.php:
----------
<?php
system("./whoami.pl");
?>
whoami.pl:
----------
#!/usr/bin/perl
system("whoami");
This works perfect, and the system outputs 'www'.
------------------------------
Now, i want to create a little C wrapper around whoami.pl to run it as
root (the program has the SUID bit set):
#define TARGET "./whoami.pl"
main(argc, argv)
char **argv;
{
setuid(0);
seteuid(0);
execv(TARGET, argv);
}
So, this is my directory tree:
-rwsr-x--- 1 pro www 4529 Sep 28 16:20 whoami
-rwx------ 1 pro pro 1829 Sep 28 15:38 whoami.pl
When i NOW do system("./whoami"), it won't work. Nothing gets into my
logs either :(. Apache runs as user/group www so it should be able to
start the program whoami right ?!
Is there any restriction in running scripts/programs with the S bit set?
Thanks in advance,
Remco Bressers
3  2372 
On Wed, 29 Sep 2004 00:46:06 +0200, "R. Bressers" <no****@nomail.no> wrote: I've got the following problem with PHP5.0 :
index.php:
----------
<?php
system("./whoami.pl");
There's a facility for getting the return code, this may be useful to find the
problem.
?>
whoami.pl:
----------
#!/usr/bin/perl
system("whoami");
This works perfect, and the system outputs 'www'.
------------------------------
Now, i want to create a little C wrapper around whoami.pl to run it as
root (the program has the SUID bit set):
#define TARGET "./whoami.pl"
main(argc, argv)
char **argv;
{
setuid(0);
seteuid(0);
execv(TARGET, argv);
}
So, this is my directory tree:
-rwsr-x--- 1 pro www 4529 Sep 28 16:20 whoami
If you want this to run as root, surely it needs to be owned by root, not pro?
-rwx------ 1 pro pro 1829 Sep 28 15:38 whoami.pl
When i NOW do system("./whoami"), it won't work. Nothing gets into my
logs either :(. Apache runs as user/group www so it should be able to
start the program whoami right ?!
Is there any restriction in running scripts/programs with the S bit set?
--
Andy Hassall / <an**@andyh.co.uk> / <http://www.andyh.co.uk>
<http://www.andyhsoftware.co.uk/space> Space: disk usage analysis tool
Andy Hassall wrote: On Wed, 29 Sep 2004 00:46:06 +0200, "R. Bressers" <no****@nomail.no> wrote:
I've got the following problem with PHP5.0 :
index.php:
----------
<?php
system("./whoami.pl");
There's a facility for getting the return code, this may be useful to find the
problem.
Do you know what function to use for this?
?>
whoami.pl:
----------
#!/usr/bin/perl
system("whoami");
This works perfect, and the system outputs 'www'.
------------------------------
Now, i want to create a little C wrapper around whoami.pl to run it as
root (the program has the SUID bit set):
#define TARGET "./whoami.pl"
main(argc, argv)
char **argv;
{
setuid(0);
seteuid(0);
execv(TARGET, argv);
}
So, this is my directory tree:
-rwsr-x--- 1 pro www 4529 Sep 28 16:20 whoami
If you want this to run as root, surely it needs to be owned by root, not pro?
That's right. I tried that, but it doesn't work :(
Thanks,
Remco
-rwx------ 1 pro pro 1829 Sep 28 15:38 whoami.pl
When i NOW do system("./whoami"), it won't work. Nothing gets into my
logs either :(. Apache runs as user/group www so it should be able to
start the program whoami right ?!
Is there any restriction in running scripts/programs with the S bit set?
R. Bressers wrote: Hi,
I've got the following problem with PHP5.0 :
index.php:
----------
<?php
system("./whoami.pl");
?>
whoami.pl:
----------
#!/usr/bin/perl
system("whoami");
This works perfect, and the system outputs 'www'.
------------------------------
Now, i want to create a little C wrapper around whoami.pl to run it as
root (the program has the SUID bit set):
#define TARGET "./whoami.pl"
main(argc, argv)
char **argv;
{
setuid(0);
seteuid(0);
execv(TARGET, argv);
}
setuid 0... run as root. You don't have permission to do this, so the
program will fail. The program is setuid, so it will run as pro.
You do not need to setuid to run whoami. The setuid bit runs the program
with the effective owner of the program, ie as pro. It is not running as
setgid, so for this purpose the group ownership is irrelevant ( the fact
that is it executable as group www means that an attempt will be made to
run it by apache as it has permission ).
man 2 setuid will give you more info.
Steve
So, this is my directory tree:
-rwsr-x--- 1 pro www 4529 Sep 28 16:20 whoami
-rwx------ 1 pro pro 1829 Sep 28 15:38 whoami.pl
When i NOW do system("./whoami"), it won't work. Nothing gets into my
logs either :(. Apache runs as user/group www so it should be able to
start the program whoami right ?!
Is there any restriction in running scripts/programs with the S bit set?
Thanks in advance,
Remco Bressers This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: William C. White |
last post by:
Does anyone know of a way to use PHP /w Authorize.net AIM without using
cURL? Our website is hosted on a shared drive and the webhost company
doesn't installed additional software (such as cURL)...
|
by: Albert Ahtenberg |
last post by:
Hello,
I don't know if it is only me but I was sure that header("Location:url")
redirects the browser instantly to URL, or at least stops the execution of
the code. But appearantely it continues...
|
by: James |
last post by:
Hi,
I have a form with 2 fields.
'A'
'B'
The user completes one of the fields and the form is submitted.
On the results page I want to run a query, but this will change
subject to which...
|
by: Ollivier Robert |
last post by:
Hello,
I'm trying to link PHP with Oracle 9.2.0/OCI8 with gcc 3.2.3 on a Solaris9
system. The link succeeds but everytime I try to run php, I get a SEGV from
inside the libcnltsh.so library.
...
|
by: Richard Galli |
last post by:
I want viewers to compare state laws on a single subject.
Imagine a three-column table with a drop-down box on the top. A viewer
selects a state from the list, and that state's text fills the...
|
by: Albert Ahtenberg |
last post by:
Hello,
I have two questions.
1. When the user presses the back button and returns to a form he filled
the form is reseted. How do I leave there the values he inserted?
2. When the...
|
by: inderjit S Gabrie |
last post by:
Hi all
Here is the scenerio ...is it possibly to do this...
i am getting valid course dates output on to a web which i have designed
....all is okay so far , look at the following web url
...
|
by: Jack |
last post by:
Hi All,
What is the PHP equivilent of Oracle bind variables in a SQL statement, e.g.
select x from y where z=:parameter
Which in asp/jsp would be followed by some statements to bind a value...
|
by: Sandwick |
last post by:
I am trying to change the size of a drawing so they are all 3x3.
the script below is what i was trying to use to cut it in half ... I
get errors.
I can display the normal picture but not the...
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The...
| |
