File:  [LON-CAPA] / doc / loncapafiles / wrap_setuid.piml
Mon Nov 2 20:05:35 2020 UTC (22 months, 4 weeks ago) by raeburn
Branches: MAIN
CVS tags: version_2_11_3_uiuc, version_2_11_3_msu, version_2_11_3, HEAD
- Support Fedora 33

<!DOCTYPE piml PUBLIC "-//TUX/DTD piml 1.0 Final//EN" 
<!-- wrap_setuid.piml -->
<!-- Guy Albertelli -->

<!-- $Id: wrap_setuid.piml,v 1.46 2020/11/02 20:05:35 raeburn Exp $ -->


<target dist="default">/home/httpd/perl</target>
<perlscript mode="fg" dist="default">
#print("Not wrapping setuid scripts\n");
<perlscript mode="fg" dist="suse9.2 suse9.3 sles9 sles10 sles11 sles12 sles15 suse10.1 suse10.2 suse10.3 suse11.1 suse11.2 suse11.3 suse11.4 suse12.1 suse12.2 suse12.3 suse13.1 suse13.2 fedora14 fedora15 fedora16 fedora17 fedora18 fedora19 fedora20 fedora21 fedora22 fedora23 fedora24 fedora25 fedora26 fedora27 fedora28 fedora29 fedora30 fedora31 fedora32 fedora33 ubuntu12 ubuntu14 ubuntu16 ubuntu18 ubuntu20 rhes7 centos7 scientific7 oracle7 rhes8 centos8 oracle8">

$fslist='<TARGET />';
open(FIND,  "find <TARGET /> -xdev -type f \\( -perm -04000 -o -perm -02000 \\) -print|");
while (&lt;FIND&gt;) {
    next unless -T;
    print("Fixing ", $_, "\n");
    ($dir,$file) = m|(.*)/(.*)|;
    chdir $dir || die "Can't chdir to $dir";
     = stat($file);
    die("Can't stat $_") unless $ino;
    chmod(($mode & 01777), ".$file");# wipe out set[ug]id bits
    open(C,"&gt;.tmp$$.c") || die("Can't write C program for $_");
    $real = "$dir/.$file";
    print C '
        int execv (const char *filename, char *const argv[]);
        int main(argc,argv)
        int argc;
        char **argv;
                execv("' . $real . '",argv);
    close C;
    system('/usr/bin/cc', ".tmp$$.c", '-o', $file);
    die("Can't compile new $_") if $?;
    chown($uid, $gid, $file);
    chmod($mode, $file);



