TennTux
December 2nd, 2010, 09:00 PM
There is a command that I run on a regular basis with one of two sets of parameters. To run with these parameters requires root privilege. I would set the sticky bit but that would open an unnecessary security hole. However, I am comfortable with giving just these two sets for parameters privilege.
So, I wrote a simple C++ application that checks for one of two values on the command line and exec's the real command with the fixed parameters. I was then able to set the sticky bit chmod u+s xyz and this worked in Ubuntu 10.04. However, I have installed Ubuntu 10.10 from scratch and I'm now getting errors that amount to the exec'd command not having root privilege.
I'm still getting my system up to speed so don't have all my documentation up to date yet. I suspect, when I exec, I have to explicitly pass on privilege as a safe guard against security leaks.
Would somebody point me in the right direction.
So, I wrote a simple C++ application that checks for one of two values on the command line and exec's the real command with the fixed parameters. I was then able to set the sticky bit chmod u+s xyz and this worked in Ubuntu 10.04. However, I have installed Ubuntu 10.10 from scratch and I'm now getting errors that amount to the exec'd command not having root privilege.
I'm still getting my system up to speed so don't have all my documentation up to date yet. I suspect, when I exec, I have to explicitly pass on privilege as a safe guard against security leaks.
Would somebody point me in the right direction.