[Zope] os.system in external method

Philippe Jadin all@123piano.com
Fri, 17 Aug 2001 15:25:26 +0200


Thanks everyone for all the answers !

Maybe that's just me, but I found that chmod was not only 000 -> 777, 
there is a forth number which does exactly that with permissions.

So I chmodded the executable 4777, and now it can be run as a normal 
user from zope.

I guess it's a security hole, I'll have to check this further. The 
executable itself seems quite secure (I have the sources :-).

But then what is the difference between chmod 4xxx and sudo ?

Philippe

>You might want to check out the "sudo" utility, which is a very
>flexible way of letting users run programs as other users, in
>a nicely controlled fashion.
>
>http://www.courtesan.com/sudo/
>
>It's complicated-ish, but very powerful. I'm no super-hacker, and
>it took me only a couple of hours (maybe an afternoon at most) to
>understand it sufficiently to allow one particular user to run
>one particular script as root, ie it's worth persevering with
>despite initially looking hard.
>
>Of course, there are other ways of doing the same thing, but I
>think this is a particularly nice one. :-)
>
>-Andy
>