bash setuid child proccess
Hello,
in a script I adjust some firewall settings (via iptables calls). I want that users can run the script so I have tried to set the SID bit but the iptables calls throw an error saying permission denied. So my question: Is there a possibility that the iptables calls inherit the setuid? PS: I know that I could use sudo for such a task ;-) RGummi |
Well, iptables itself needs root access. Setting your script that calls iptables with setuid isn't going to cut it. I'd say go with the sudo option.
|
Hello,
thanks, this is what I have done now (sudo). But I was astonished that setuid does not work, is this specific for iptables or a general rule? Thanks RGummi |
I think it is not allowed to use suid/sgid with scripts (only binaries).
See this. That is to say, you can set it, but your script will not get suid privileges. |
Hello,
thanks! I will stay using sudo. RGummi |
All times are GMT -5. The time now is 11:10 PM. |