Beefy Boxes and Bandwidth Generously Provided by pair Networks
Just another Perl shrine

Re^4: suid Perl with App::PAR::Packer (pp)

by Tommy (Chaplain)
on Oct 14, 2013 at 04:12 UTC ( #1058123=note: print w/replies, xml ) Need Help??

in reply to Re^3: suid Perl with App::PAR::Packer (pp)
in thread suid Perl with App::PAR::Packer (pp)

Dear, Anonymous Monk. I did what you asked and put the diff up as a gist on github.

It's here:

Please read the notes on the patch before using it, because it notes that the build helper script had to be changed in order to make it work (by removing the --clean option when calling pp). I added crypto filters to the compiled executable for better security, given that it is suid. I also put into the BEGIN block of the script an instant-exit if $< isn't my uid.

The updated (fixed) build helper script:

#!/bin/bash sudo rm -rf /tmp/par* && sudo rm -rf suid_script && pp --output=suid_script -f Crypto -F Crypto -M Filter::Crypto::Decrypt + && sudo chown root:root suid_script && sudo chmod +x suid_script && sudo chmod u+s suid_script && stat suid_script && rm -rf /tmp/par*


A mistake can be valuable or costly, depending on how faithfully you pursue correction

Log In?

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://1058123]
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others browsing the Monastery: (3)
As of 2016-10-23 23:59 GMT
Find Nodes?
    Voting Booth?
    How many different varieties (color, size, etc) of socks do you have in your sock drawer?

    Results (302 votes). Check out past polls.