Chmod script problems

Braynid · 07-12-2006, 12:39 AM

Hello!

So i have a script that has in it the command:

Code:

 ping -n -w4 -i 0.02 -c 100 -q

So, normaly the regular users get:

Code:

ping: cannot flood; minimal interval, allowed for user, is 200ms

I have tried:

Code:

chmod og+s script

And that didn't worked, so i tried to set that in midnight commander and i've set:

'Set user ID in execution'
'Set group ID in execution'

user is root.

I user Ubuntu RC 6.06 server.

So what is to do.. i don't get it.

Thanks.

jstephens84 · 07-12-2006, 12:59 AM

are you trying to make that script executable or are you trying to excecute the script. if you are trying to execute the script then type

Code:

./script-name

jstephens84 · 07-12-2006, 01:01 AM

try chmod 755 script.

That says owner will have rwx group will have rx and everyone else will have rx. your script should then be executable.

Braynid · 07-12-2006, 01:09 AM

The script IS 755.
Here are the permisions for the script:

Code:

-rwsr-sr-x  1 root   root         45 2006-07-12 08:18 bpierderi

I want other users then root be able to execute the script withouth the error:

Code:

ping: cannot flood; minimal interval, allowed for user, is 200ms

In order to to that i figured i should grant users root ID for executing the script.
How is it donne?

raskin · 07-12-2006, 01:42 AM

Consider using sudo. Sometimes for security reasons (not that it makes sense, but..) suid scripts are not acting as suid. Or write one-call-to-"system" C wrapper.

Braynid · 07-12-2006, 02:05 AM

I don't want to give sudo access for all the users, they might meddle in my stuff. Can I use sudo for that script only? Or please can you give me an example on how to use it?
Thanks.

Quote:

Or write one-call-to-"system" C wrapper.

I don't know what that is...

raskin · 07-12-2006, 02:10 AM

That's the very idea of sudo!

ALL ALL = NOPASSWD: /usr/script/ping-flood

but read man sudo, man sudoers

Braynid · 07-12-2006, 02:26 AM

Ok, right you are! Only one problem, from what i have read i don't understand something. Should I add that to the /etc/sudoers file or in my script?

Braynid · 07-12-2006, 03:26 AM

Ok, it's done. I added the given line to /etc/sudoers and added 'sudo' to my script and its ok.

Thanks a log guys!

Braynid · 07-12-2006, 03:35 AM

Unfortunately i have been mistakeing, with a normal user i get:

Code:

testa@MainThinkTank:~$ bpierderi
Password:
Sorry, user testa is not allowed to execute '/bin/ping -n -w4 -i 0.02 -c 100 -q    
ip.ip.ip.ip' as root on MainThinkTank.rdsnet.ro.

I am using NOPASSWD and doesn't help!

raskin · 07-12-2006, 03:44 AM

I mean you should have 2 scripts: one a user can run under sudo and one which runs it under sudo. I still recommend you to read man sudo, man sudoers to have idea of this.

Braynid · 07-12-2006, 03:52 AM

I have read the man pages, the command

Code:

ALL ALL = NOPASSWD: /usr/script/ping-flood

should let all users run the script ping-flood witouth promping for password.

I havea script in /usr/bin , say it's ping-flood like you said. I have added the above line to my /etc/sudoers and all users should be able to use it, but it's not working...

raskin · 07-12-2006, 04:17 AM

Did you put sudo into or did you made just a script and tried to run "sudo /usr/bin/ping-flood" ?

Braynid · 07-12-2006, 04:28 AM

So here it goes.
In /etc/bash.bashrc:

Code:

function pierderi ()
{
bpierderi $1
}

In /usr/bin/bpierderi;

Code:

 sudo ping -n -w4 -i 0.02 -c 100 -q $1

In /etc/sudoers:

Code:

 ALL ALL = NOPASSWD: /usr/bin/bpierderi

I don't get it. I have tried:

Code:

 testa ALL = NOPASSWD: /usr/bin/bpierderi

and still it ask me for password and after i get:

Code:

Sorry, user testa is not allowed to execute '/bin/ping -n -w4 -i 0.02 -c 100 -q yahoo.com'
 as root on MainThinkTank.rdsnet.ro.

raskin · 07-12-2006, 04:33 AM

Mistake.

function pierderi() { sudo /usr/bin/bpierderi "$1"; }

and

ping -n -w4 -i 0.02 -c 100 -q $1