[HCoop-Discuss] SVN security issues
Marcus Rueckert
darix at web.de
Mon Nov 6 05:09:37 EST 2006
hi,
1. you cant setuid scripts. it would need to be a binary.
2. you can have a small script that calls the user script with sudo e.g.
that way you wouldnt need any stating.
Such script could look like:
[[[
#!/bin/sh
if [ -e "../userhooks/post-commit" ] ; then
sudo -u someuser ../userhooks/post-commit
fi
]]]
anyway. i would recommend to review any user script anyway. and only
allow the admin team to place new scripts. no matter if they run as user
or not. the users can do still bad stuff to your server.
--
openSUSE - SUSE Linux is my linux
openSUSE is good for you
www.opensuse.org
More information about the HCoop-Discuss
mailing list