Beefy Boxes and Bandwidth Generously Provided by pair Networks
Perl: the Markov chain saw
 
PerlMonks  

comment on

( [id://3333]=superdoc: print w/replies, xml ) Need Help??
Fellow Monks,

the situation at hand is a CGI script which needs to be run as a certain user and which has to call several commands only available to that user using shared libraries found in the users LD_LIBRARY_PATH.

Lucky are those who have Apache2 which ships with mod_suexec by default, but not alas! on the system I have to work on.

Next I tried to run that CGI script suid to the user in question (not root), I went through the perlsec manpage, cleaned my path and other environments and untained all the input until finally the script would start and try to call the external command (using system()). Then the dynamic linking failed. I tried to set $ENV{'LD_LIBRARY_PATH'}, I preceded the actual command with the variable like this:

my $cmd = "LD_LIBRARY_PATH=/path/to/libs command arg1 arg2"; system($cmd) and die "..";
but to no avail. Any pointers, hints and tips welcome. Can you help me out?

Update: Fixed the typo in the title.

Regards... stefan k
you begin bashing the string with a +42 regexp of confusion


In reply to Apache, no suexec, suid and the environment by stefan k

Title:
Use:  <p> text here (a paragraph) </p>
and:  <code> code here </code>
to format your post; it's "PerlMonks-approved HTML":



  • Are you posting in the right place? Check out Where do I post X? to know for sure.
  • Posts may use any of the Perl Monks Approved HTML tags. Currently these include the following:
    <code> <a> <b> <big> <blockquote> <br /> <dd> <dl> <dt> <em> <font> <h1> <h2> <h3> <h4> <h5> <h6> <hr /> <i> <li> <nbsp> <ol> <p> <small> <strike> <strong> <sub> <sup> <table> <td> <th> <tr> <tt> <u> <ul>
  • Snippets of code should be wrapped in <code> tags not <pre> tags. In fact, <pre> tags should generally be avoided. If they must be used, extreme care should be taken to ensure that their contents do not have long lines (<70 chars), in order to prevent horizontal scrolling (and possible janitor intervention).
  • Want more info? How to link or How to display code and escape characters are good places to start.
Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others examining the Monastery: (6)
As of 2024-03-28 23:23 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found