I want to add a script to my crontab to delete some logs that grow very quickly on a weekly basis. Unfortunatlty when the files are created only root has the delete privledges. How can I run a script from a regular users login that will change to super user, delete the files then change back?
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Writing a script that can execute commands as super user
- Thread starter dl01
- Start date
![[pc2]](/data/assets/smilies/pc2.gif "[pc2] [pc2]")
You could make any script run commands as root as setting the owner of the script to be root (chown root script_name) then making the script run as setuid using chmod BUT this is a very bad idea as it is virtually impossible to make the script "hacker proof" and therefore you end up with a major security violation. By using any number of well known and well published tricks a malicious user could use your setuid script to gain root access to your system and then wreak havoc.
The securest method of doing this task is to write a program in C that will run as setuid root but only assumes root powers for the barest minimum time and has strict control coded in to limit which files can be deleted.
The securest method of doing this task is to write a program in C that will run as setuid root but only assumes root powers for the barest minimum time and has strict control coded in to limit which files can be deleted.
- Status
Similar threads
- Locked
- Question