brycec: Define "routine"
If we're talking "routine" as in run from cron, just run the script from root's crontab
If it's an admin script, then sudo
Note that a setuid wrapper adds needless complication, and could be abused (if someone replaced the target script with their own, for instance)
JC_Denton: yeah, it's not periodic enough to warrant cron
but "lesser" admins need access to it. sudo seems easiest/safest and it's what i've been doing lately.
long ago, i used C wrapper binaries
mercutio: setuid binaries have fallen out of fashion
but most people seem to end up opening sudo too much
convenience over security
i don't really see how open sudo is more secure than logging in as root myself
RandalSchwartz: hint - in sudo, don't restrict people to "vi" :)
or "less"
former $client did that... nice backdoor
BryceBot: That's what she said!!
***: booly-yam-1617 has joined #arpnetworks
booly-yam-1617 has quit IRC (Remote host closed the connection)
m0unds: lol
good one BryceBot
JC_Denton: yeah, never been a big fan of the sudo regex
i think it makes it too easy to make a mistake
***: dj_goku has quit IRC (Ping timeout: 255 seconds)
dj_goku has joined #arpnetworks
ix33 has quit IRC (Quit: WeeChat 0.4.1)
dj_goku has quit IRC (Ping timeout: 240 seconds)
dj_goku has joined #arpnetworks
dj_goku has quit IRC (Changing host)
dj_goku has joined #arpnetworks
mdu59_ has quit IRC (Quit: leaving)
zeshoem has joined #arpnetworks
jlgaddis has quit IRC (Ping timeout: 252 seconds)