Hi

I need your kind help on executing a script.

I've created a automate script using EXPECT and placed the
script file in path "/usr/bin/SCRIPT" now i have given a
permission of read and execute to all users in a particular
group say "group - winner" now the user "winner" has a permission
of `rwx` and a user "john" of group "winner" has `rx" permission.

If the user john is logging in and providing a command "SCRIPT"
at the command prompt then the script start works but the user
can also view the file by providing command "cat /usr/bin/SCRIPT".

As the SCRIPT contains confidential information such as passwords etc,
the user "should not be able to view the contents of the SCRIPT" but they
should execute the script.

Is there any solution for this issue.

I hope you will send me the solution.

Thanks in Advance
Bharani

I'm pretty sure that for shell scripts, the user needs read and execute permissions to run it (because the shell has to read the script to interpret it). This is not true of binaries (execute permission alone is sufficient). There are a couple of ways around this--perhaps the simplest is make the script readable only by a certain group with no members, and then write a tiny C program that is setgid to that group and just calls the script.

Hi there,

Well i am also not a very HIGH one in linux field but i am using LINUX it
so 4 any mistake | plz forgive me

As far as ur query is concerned, as u had given 'rx' permissions to group to which john belongs , so it will naturally can read the script contents of the script .

But for ur problem , u can give Xecute rights to all but read & write or Read only or write only whatever to only specific users of ur choice. !

Also for Xecuting NO read rights if used !

as mentioned in the last post

for executing shell scripts u need read permissions as well apart from xecute permisisons
since it is interpreted

for binaries u need only execute permisions

regards