Ilya Martynov <[EMAIL PROTECTED]> wrote: >>>>>> On Mon, 25 Mar 2002 15:17:06 -0600, James G Smith <[EMAIL PROTECTED]> said: > >JS> And the sky isn't blue, but the results are the same. > >JS> mod_perl can't run scripts. > >JS> Scripts can be run from mod_perl. > >JS> More than that, set-uid scripts can be run from mod_perl and offer >JS> one of the better ways of doing things that require root privileges. > >Results are not same. Basically Apache::Registry (handler used with >mod_perl to emulate execution of scripts) just opens file which >contains script, evals it as big subroutine and calls that >subroutine. Opening and reading set-uid file which contains script >doesn't give automagically root rights to instance of apache process >which handles request.
I never said anything about Apache::Registry. If you are using a Perl interpreter with mod_perl, then you can fork and run a suid script. That's what I'm trying to say. Nothing more, nothing less. End of story. Even the Eagle book speaks of running scripts (though in the context of Apache::Registry), so using that terminology is not original with me. I was trying to talk about something in a manner that might be somewhat understandable, but people started pointing out the trees and ignoring the forest. I will say no more on this subject. -- James Smith <[EMAIL PROTECTED]>, 979-862-3725 Texas A&M CIS Operating Systems Group, Unix
