| | 
12-27-2005
|
#1 (permalink)
| | Just Joined!
Join Date: Mar 2005 Location: cracow, poland
Posts: 76
| running su from a bash script
hello 
i'd like to write a script that would perform something as root but could be run by any user.
i've tried simply putting "su" into it but the script exits immediatel after i enter the password. "sudo" says i don't have the permission required.
how can i prompt for the root password, execute a root-only command and come back to the normal user from inside one script? | 
|
| |
12-27-2005
|
#2 (permalink)
| | Trusted Penguin
Join Date: Aug 2005 Location: Nottingham, England
Posts: 2,836
| There are a couple of potential solutions here. You can use the sudo command so the users use 'sudo <bash_script>' to use the script, or you can set the ownership and sticky bit on the script so it always runs as root. For safety's sake you should use sudo. | |
| | |
12-28-2005
|
#3 (permalink)
| | Linux Newbie
Join Date: Dec 2005
Posts: 104
|
Quote: |
Originally Posted by Roxoff There are a couple of potential solutions here. You can use the sudo command so the users use 'sudo <bash_script>' to use the script, or you can set the ownership and sticky bit on the script so it always runs as root. For safety's sake you should use sudo. |
I may be wrong, but as far as im aware, you would also have to add the users into the sudoers file.
cheers,
Nathan | |
| | |
12-28-2005
|
#4 (permalink)
| | Linux Enthusiast
Join Date: Aug 2005 Location: Hell
Posts: 514
| Quote: |
Originally Posted by Roxoff or you can set the ownership and sticky bit on the script so it always runs as root. For safety's sake you should use sudo. | You mean the setuid bit. If your script is written properly, there should be no security problems with the setuid bit, since many system programs, like su, sudo, passwd, etc., all function using the setuid bit. | |
| | |
12-28-2005
|
#5 (permalink)
| | Linux Guru
Join Date: Oct 2001 Location: Täby, Sweden
Posts: 7,578
| Quote: |
Originally Posted by Roxoff you can set the ownership and sticky bit on the script so it always runs as root. | That would be the SUID bit, not the sticky bit. However, that wouldn't work. For whatever strange reason, Linux only honors SUID/SGID on a.out and ELF files, not interpreted files... | |
| | |
12-29-2005
|
#6 (permalink)
| | Linux Guru
Join Date: Mar 2005 Location: Texas
Posts: 1,697
| Quote: |
For whatever strange reason, Linux only honors SUID/SGID on a.out and ELF files, not interpreted files...
| Can't seem to locate a credible reference at the moment, but I remember reading that as of some kernel revision, support was dropped for the SUID bit on interpreted files (e.g. shell scripts).
The reason was/is that it is too difficult to harden these sufficiently. | |
| | |
12-29-2005
|
#7 (permalink)
| | Linux Guru
Join Date: Mar 2005 Location: Texas
Posts: 1,697
| Quote: |
... there should be no security problems with the setuid bit, since many system programs, like su, sudo, passwd, etc., all function using the setuid bit.
| FWIW, the Bastille hardening program ( http://www.bastille-linux.org/) recommends removing SUID bits even from a number of binaries, so they're definitely viewed as a security risk in some cases. | |
| | |
01-13-2006
|
#8 (permalink)
| | Just Joined!
Join Date: Dec 2005 Location: Assam, India
Posts: 36
| I am facing the same problem.
Even I need the solution of this.
I have written a shell script to find the system information. For viewing certain information, it needs root priviledge.
So instead of throwing an error message, instructing the user to run it as root, what I want is that it should ask for the root password and after the jobs done it should exit the root mode. Isn't there any way to do it? | |
| | |
01-13-2006
|
#9 (permalink)
| | Linux Engineer
Join Date: Nov 2004 Location: Ft. Polk, LA
Posts: 794
| The best way is probably to set it up in sudoers and run it with sudo. Or I think the -c option to su allows you to run a command as the other user. | |
| | |
01-13-2006
|
#10 (permalink)
| | Just Joined!
Join Date: Nov 2005 Location: Nigeria
Posts: 2
| how will i configure suse on my system
[QUOTE=caminoix]hello
Hello Sir pls i am a beginger in linux,i have suse 9.0 now i installed it on my system but is not configured so have will i do the configuration on my system pls.You can send the spets to me with this E-mail address (chuksetunwa@yahoo.com)pls. sir.both the commands pls.
Thanks for helping me.
Yours friend Chuks. | |
| | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes |  Linear Mode | 
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts
HTML code is Off | | | |
Linux Programming & Scripting C, Perl, PHP, Bash Scripts, anything programming or script related post in here!
Submit Your Article
Latest Articles
Editor's Choice
Article Categories
Join Linux Forums Today
Win Great Prizes
