[Zope] os.system in external method
Philippe Jadin
all@123piano.com
Fri, 17 Aug 2001 15:25:26 +0200
Thanks everyone for all the answers !
Maybe that's just me, but I found that chmod was not only 000 -> 777,
there is a forth number which does exactly that with permissions.
So I chmodded the executable 4777, and now it can be run as a normal
user from zope.
I guess it's a security hole, I'll have to check this further. The
executable itself seems quite secure (I have the sources :-).
But then what is the difference between chmod 4xxx and sudo ?
Philippe
>You might want to check out the "sudo" utility, which is a very
>flexible way of letting users run programs as other users, in
>a nicely controlled fashion.
>
>http://www.courtesan.com/sudo/
>
>It's complicated-ish, but very powerful. I'm no super-hacker, and
>it took me only a couple of hours (maybe an afternoon at most) to
>understand it sufficiently to allow one particular user to run
>one particular script as root, ie it's worth persevering with
>despite initially looking hard.
>
>Of course, there are other ways of doing the same thing, but I
>think this is a particularly nice one. :-)
>
>-Andy
>