>Number: 4175 >Category: general >Synopsis: SUID Perl scripts are ignored, it does not change UID on >execution. >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: open >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Wed Mar 31 02:10:06 PST 1999 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.3.4 >Environment: SunOS gdv023 5.5 Generic_103093-02 sun4d sparc SUNW,SPARCserver-1000 >Description: I have a simple Perl script that is SUID to another user (UID=5000), that is called via mod_perl in /perl.
If I call this script from the command line, it changes UID (and when I print $< and $> on the command line they are different). When called via http://localhost/perl/script.pl, it ignores the SUID, without any errors. The effective & real ID are identical when checked in the script. Why? I recompiled Apache with suEXEC, but it didn't help and it's not the problem, since normal SUID scripts should run with suEXEC? suEXEC is not *user* directory SUID, no? In httpd, /perl is as follows: ## Configure mod_perl <Location /perl> #AllowOverride None SetHandler perl-script PerlHandler Apache::Registry Options ExecCGI allow from all PerlSendHeader On </Location> >How-To-Repeat: >Fix: No. Perhaps I've misunderstood something? I did check all doc, bug reports etc, but found no mention of this. Thanks in advance, Sean >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, ] [you need to include <[EMAIL PROTECTED]> in the Cc line ] [and leave the subject line UNCHANGED. This is not done] [automatically because of the potential for mail loops. ] [If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request ] [from a developer. ] [Reply only with text; DO NOT SEND ATTACHMENTS! ]
