suid cgi?

Eugene Tsyrklevich eugene at
Fri Jun 9 20:13:11 CDT 2000



Eugene Tsyrklevich
Security Architects, Inc.

On Fri, Jun 09, 2000 at 05:25:51PM -0700, Rick Schlientz wrote:
> ~sdpm~
> What is the best way to allow a secure cgi the same permissions as the user
> logged into it?
> I have a perl cgi script running on a secure apache server, with users
> logged into to server to access the script.  What is the best approach -
> creating a suid script to run with the effective uid of the logged in user,
> or making the script check the permissions itself.
> And does anyone have any code samples on how to go about this?
> Thanks!

The posting address is: san-diego-pm-list at

List requests should be sent to: majordomo at

If you ever want to remove yourself from this mailing list,
you can send mail to <majordomo at> with the following
command in the body of your email message:

    unsubscribe san-diego-pm-list

If you ever need to get in contact with the owner of the list,
(if you have trouble unsubscribing, or have questions about the
list itself) send email to <owner-san-diego-pm-list at> .
This is the general rule for most mailing lists when you need
to contact a human.

More information about the San-Diego-pm mailing list