You would need to have extproc run as some user other than oracle.
The suggested user on unix systems is 'nobody', with rather
limited privileges.
Setting it to root might prove dangerous.
Jared
| "Henry Poras" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED] 09/05/2003 01:29 PM
|
To: Multiple recipients of list ORACLE-L <[EMAIL PROTECTED]> cc: Subject: external procedure as not-oracle on OS |
In order to run some OS commands from within the database we have set up a
few external procedures. One of the functions we need to accomplish is to
change the permissions of a file owned by a user other than oracle. As the
external procedure is executed by Oracle, this is a problem. I tried
changing the ownership of the .so file to the other user, setting the setuid
bit, and granting oracle execute permissions on this file. That didn't work.
Our next thought is to have the .so file call a C executable (set with the
setuid bit) which will run chmod. The thought of one person here is that
setuid is strictly for executables and .so is more of a
library/collection-of-code, not strictly an exe. I'm not too clear on this
differentiation. It's also an ugly solution, but that's the direction in
which we are moving.
Has anyone come up with any other alternatives?
Thanks.
Henry
--
Please see the official ORACLE-L FAQ: http://www.orafaq.net
--
Author: Henry Poras
INET: [EMAIL PROTECTED]
Fat City Network Services -- 858-538-5051 http://www.fatcity.com
San Diego, California -- Mailing list and web hosting services
---------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from). You may
also send the HELP command for other information (like subscribing).
