Unix Technical Forum

"su - other_user -c some_command" no password asked

This is a discussion on "su - other_user -c some_command" no password asked within the comp.unix.solaris forums, part of the Solaris Operating System category; --> On Mar 11, 2:11*pm, FJCS_Montecoruto <son_eu_cara...@yahoo.es> wrote: > [Thank you, and to all who responded]. > > On Mar ...


Go Back   Unix Technical Forum > Unix Operating Systems > Solaris Operating System > comp.unix.solaris

"su - other_user -c some_command" no password asked "su - other_user -c some_command" no password asked

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
Page 2 of 2 < 1 2

 

LinkBack Thread Tools Display Modes
  #11 (permalink)  
Old 03-17-2008, 06:03 AM
mkirsch1@rochester.rr.com
 
Posts: n/a
Default Re: "su - other_user -c some_command" no password asked
On Mar 11, 2:11*pm, FJCS_Montecoruto <son_eu_cara...@yahoo.es> wrote:
> [Thank you, and to all who responded].
>
> On Mar 11, 2:21 pm, Wolfgang <wtra...@AT.web.de> wrote:
> .../...
>
> > maybe someone has suid root the su file and you have done a patch or
> > update? *.../...
>
> This is a possibility. Right now i cannot tell.
> But *i have tried an example script and changed the suid bit. Even
> then, the passwod was asked for.
>
> If i'm not able to find the answer to the original question i will
> take your suggestions about changing to "sudo" and eventually
> modifythe script.
>
> Maybe this was originally scripted without any password for the other
> user, (that's truly amazing but currently it seems to me the only
> possible explanation on how this script was able to work), so later i
> would have to put it right with "sudo", regardless of what the script
> did originally.

Or, the simple solution: The user running this "broken" script forgot
the password and either conveniently forgot the password requirement
or is lying to you.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #12 (permalink)  
Old 03-17-2008, 06:03 AM
Wolfgang
 
Posts: n/a
Default Re: "su - other_user -c some_command" no password asked
Fco. Javier Cobas schrieb:
> [Thank you, and to all who responded].
> On Mar 11, 2:21 pm, Wolfgang <wtra...@AT.web.de> wrote:
> .../...
>> maybe someone has suid root the su file and you have done a patch or
>> update? .../...
>
> This is a possibility. Right now i cannot tell.
> But i have tried an example script and changed the suid bit. Even
> then, the passwod was asked for.

yes, I looked at sources at opensolaris (i assume su has not changed a
lot since older SunOS versions): it calls getuid which returns the real
uid and not the effective uid. was just a idea ....

another idea: does su ask for the own password? Maybe give both users
the same uid, and make shure getuid sees anotherusers id first ... ;-)
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply
Page 2 of 2 < 1 2

« HELP - Wireless networking for ultra sparc II | poolcfg doesn't modify the pool »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Forum Jump


All times are GMT. The time now is 09:54 PM.

Contact Us - Unix Technical Forums - Top

Powered by vBulletin® Version 3.6.5
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
SEO by vBSEO 3.2.0
www.UnixAdminTalk.com