| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |
| Who | What | When |
|---|---|---|
| JC_Denton | so if a routine shell script needs to run as root, is it better to have setuid wrapper that calls it or just a simple sudo definition | [01:28] |
| brycec | Define "routine"
If we're talking "routine" as in run from cron, just run the script from root's crontab If it's an admin script, then sudo Note that a setuid wrapper adds needless complication, and could be abused (if someone replaced the target script with their own, for instance) | [01:37] |
| JC_Denton | yeah, it's not periodic enough to warrant cron
but "lesser" admins need access to it. sudo seems easiest/safest and it's what i've been doing lately. long ago, i used C wrapper binaries | [01:47] |
| .......... (idle for 49mn) | ||
| mercutio | setuid binaries have fallen out of fashion
but most people seem to end up opening sudo too much convenience over security i don't really see how open sudo is more secure than logging in as root myself | [02:36] |
| .............. (idle for 1h9mn) | ||
| RandalSchwartz | hint - in sudo, don't restrict people to "vi" :)
or "less" former $client did that... nice backdoor | [03:46] |
| BryceBot | That's what she said!! | [03:47] |
| ................................................ (idle for 3h55mn) | ||
| *** | booly-yam-1617 has joined #arpnetworks | [07:42] |
| booly-yam-1617 has quit IRC (Remote host closed the connection) | [07:50] | |
| .......................... (idle for 2h7mn) | ||
| m0unds | lol
good one BryceBot | [09:57] |
| ...... (idle for 27mn) | ||
| JC_Denton | yeah, never been a big fan of the sudo regex
i think it makes it too easy to make a mistake | [10:24] |
| .......... (idle for 49mn) | ||
| *** | dj_goku has quit IRC (Ping timeout: 255 seconds) | [11:13] |
| ....... (idle for 30mn) | ||
| dj_goku has joined #arpnetworks | [11:43] | |
| ................................... (idle for 2h52mn) | ||
| ix33 has quit IRC (Quit: WeeChat 0.4.1) | [14:35] | |
| ................ (idle for 1h15mn) | ||
| dj_goku has quit IRC (Ping timeout: 240 seconds) | [15:50] | |
| .... (idle for 15mn) | ||
| dj_goku has joined #arpnetworks
dj_goku has quit IRC (Changing host) dj_goku has joined #arpnetworks | [16:05] | |
| ......... (idle for 40mn) | ||
| mdu59_ has quit IRC (Quit: leaving) | [16:45] | |
| ....................................................... (idle for 4h31mn) | ||
| zeshoem has joined #arpnetworks | [21:16] | |
| ............................... (idle for 2h34mn) | ||
| jlgaddis has quit IRC (Ping timeout: 252 seconds) | [23:50] | |
| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |