SUID not working with shell script

2020-01-28 09:46发布

I have created a small shell script with the following content:

cat /usr/bin/checksuid.sh

!/bin/bash
echo "Hello" > /etc/myfile.cnf

ls -l /usr/bin/checksuid.sh
-rwsr-xr-x 1 root root 56 Sep  9 12:56 /usr/bin/checksuid.sh

I have also created a file /etc/myfile.cnf with root account and set permissions as below:

-rw-r--r-- 1 root root 6 Sep  9 12:26 /etc/myfile.cnf

When I execute /usr/bin/checksuid.sh from a non-root account, I get the following error:

/usr/bin/checksuid.sh: line 3: /etc/myfile.cnf: Permission denied

Can some one help you that why SUID is not working?

标签： linux bash shell suid

2条回答

神经病院院长

2楼-- · 2020-01-28 09:49

From http://www.tuxation.com/setuid-on-shell-scripts.html:

"the truth is actually that the setuid bit is disabled on a lot of *nix implementations due the massive security holes it incurs"

An alternative approach - wrap the script in something that can use setuid, like this example c program. There are obviously differences to simply calling your script vs using a wrapper like this (e.g. ignored exit codes) but this should give you an idea anyway.

#include <stdio.h>
#include <stdlib.h>
#include <sys/types.h>
#include <unistd.h>

int main()
{
   setuid( 0 );
   system( "/path/to/script.sh" );

   return 0;
}

0人赞添加讨论(0) 举报

做个烂人

3楼-- · 2020-01-28 10:08

Shell scripts can't be SUID. See http://www.faqs.org/faqs/unix-faq/faq/part4/section-7.html

0人赞添加讨论(0) 举报

SUID not working with shell script

采纳回答

编辑标签

举报内容

检举类型

检举原因

检举说明(必填)

打开微信“扫一扫”，打开网页后点击屏幕右上角分享按钮

付费偷看金额在0.1-10元之间