[Zope] Regaining lost privileges

Andrew Kenneth Milton akm@mail.theinternet.com.au
Tue, 5 Sep 2000 09:04:21 +1000


+-------[ Dieter Maurer ]----------------------
| Andrew Kenneth Milton writes:
|  > Is there anyway to regain 'root' privs from inside a zope product?
|  > 
|  > Using the -u flag to start causes the privs to be permanently gone because
|  > z2.py uses setuid + setgid (and python doesn't seem to define sete[ug]id, at
|  > least not on my system).
|  > 
|  > Other than running zope as root permanently (which I really would like to
|  > avoid), does anyone have any quick ideas on how to achieve this?
| The same trick could be used by any process to gain root privileges....
| 
| It is easy to implement a Python wrapper for the
| sete[ug]id.

I'm happy to write the wrapper, and also modify the Z2.py script to
only use seteuid if explicitly requested on the command line.

There's not much point in really doing so if there's only two people
who want to use it :-)

-- 
Totally Holistic Enterprises Internet|  P:+61 7 3870 0066   | Andrew Milton
The Internet (Aust) Pty Ltd          |  F:+61 7 3870 4477   | 
ACN: 082 081 472 ABN: 83 082 081 472 |  M:+61 416 022 411   | Carpe Daemon
PO Box 837 Indooroopilly QLD 4068    |akm@theinternet.com.au|