Re: Possible to reset Linux file permissions w/in webcat [shell] ?

This WebDNA talk-list message is from

2000


It keeps the original formatting.
numero = 35520
interpreted = N
texte = WebCat runs under Linux as a non-priveledged user, so there are lots of things that you cannot do directly using [SHELL]. It is, however, possible to use a SUID script to do the file permission/ownership changes. Have your sys admin create a script to chmod/chown the files, then flag it as SUID: chmod +s scriptnameI would recommend that the script should not accept any command line parameters; it is too dangerous. SUID script's run with the rights of the file's owner, not the user running the script. Hence you could have a script owned by root, that an unprivileged user could run.I have not written one yet (mostly because I AM the sysadmin), but the best design would be to have a directory structure parallel to the production files. So if your production files are in /home/http/htdocs/site1/...you should have a directory /home/youruser/htdocs/site/...and the script would copy the files to their real home, change the rights and ownership. I would recommend a script that simply copies all files from the current directory to the matching directory in the live system. Then you could move the script around to wherever you wanted to; there is no real reason to do this via WebCat at all.hope this gives you some ideas...John PeacockJohn Butler wrote: > > Linux , WC 3.08 > > Is it possible to reset file permissions within a webcat [shell] context? We are using > [shell] successfully for other things, but when my sys admin tried to make a template > which I can use to reset perms on other files without bothering him all the time, it > didn't work. Before I post code etc. I want to know if there is some reason why it > should *not* work in the first place (ie - security feature, etc). > > -John >------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (Gary Krockover 2000)
  2. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (Gary Krockover 2000)
  3. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (ShrPAUL1@aol.com 2000)
  4. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (ShrPAUL1@aol.com 2000)
  5. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (John Butler 2000)
  6. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (Bob Sneidar 2000)
  7. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (Bob Sneidar 2000)
  8. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (ShrPAUL1@aol.com 2000)
  9. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (John Butler 2000)
  10. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (ShrPAUL1@aol.com 2000)
  11. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (ShrPAUL1@aol.com 2000)
  12. Re: Possible to reset Linux file permissions w/in webcat [shell] ? (John Peacock 2000)
  13. Possible to reset Linux file permissions w/in webcat [shell] ? (John Butler 2000)
WebCat runs under Linux as a non-priveledged user, so there are lots of things that you cannot do directly using [shell]. It is, however, possible to use a SUID script to do the file permission/ownership changes. Have your sys admin create a script to chmod/chown the files, then flag it as SUID: chmod +s scriptnameI would recommend that the script should not accept any command line parameters; it is too dangerous. SUID script's run with the rights of the file's owner, not the user running the script. Hence you could have a script owned by root, that an unprivileged user could run.I have not written one yet (mostly because I AM the sysadmin), but the best design would be to have a directory structure parallel to the production files. So if your production files are in /home/http/htdocs/site1/...you should have a directory /home/youruser/htdocs/site/...and the script would copy the files to their real home, change the rights and ownership. I would recommend a script that simply copies all files from the current directory to the matching directory in the live system. Then you could move the script around to wherever you wanted to; there is no real reason to do this via WebCat at all.hope this gives you some ideas...John PeacockJohn Butler wrote: > > Linux , WC 3.08 > > Is it possible to reset file permissions within a webcat [shell] context? We are using > [shell] successfully for other things, but when my sys admin tried to make a template > which I can use to reset perms on other files without bothering him all the time, it > didn't work. Before I post code etc. I want to know if there is some reason why it > should *not* work in the first place (ie - security feature, etc). > > -John >------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ John Peacock

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

WCS Newbie question (1997) FYI: virus alert (1996) RedHat 9 & WebCatalog 4.5 (2004) This list needs a digest: rant, rave... (1997) back button loses cart (2000) update on wn searching (1997) PCS Customer submissions ? (1997) [WebDNA] Old Problem, the exclamation point (2014) WebCat2 - [format thousands] (1997) RE: How much ram??? (1997) ListFiles and .DS_Store (2004) Help name our technology! (1997) add address to cart before purchase (2003) Can't find templaes (1997) [OT] WebDNA Family Album (2004) Serial Number Question (1997) Email address checker (2002) FEW QUESTIONS (1997) ReturnRaw and redirect (1997) Hiding HTML and breaking the page (1997)