G'day Mate: Need to run as root?

« Simplicity | Main | Feeling stressed »

February 28, 2007

Need to run as root?

Every now and then, I find myself in a locked down account on a restricted access box where I need to run something as root.

Say, for example, you were running BigBrother (why?) on AIX (why?) and you need to run bootinfo -r. In this case the AIX partition is a NIM - so no sudo available....

What you need is a little C program:

main()

{

    setuid(0);

    seteuid(0);

    setgid(0);

    seteuid(0);

    system("/usr/sbin/bootinfo -r");

}

Note the full pathname used in the system call and the lack of externally passed variables - we don't want to make too big a hole here...

Compile this (obviously not on the NIM because there is no installed compiler). Install it somewhere safe - so that root and bigbrother are the only users that can access it and then:

chown 0:0 filename

chmod a+rx filename

chmod ug+s filename

Of course, if you are more security concious, you should have checked the userid in the C program as well....

Posted by Ozguru at February 28, 2007 07:00 AM

May 2007
Sun	Mon	Tue	Wed	Thu	Fri	Sat
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

May 2007

Sun

Mon

Tue

Wed

Thu

Fri

Sat

Recent Comments

Lawyers (1)
Ravages wrote: One of the best Lawyer jokes I've h... [more]

The less you know, the more you get paid... (1)
The Gray Monk wrote: Right, now we know where we went wr... [more]

Hi, I'm Linux (2)
The Gray Monk wrote: Ye Gods - but that dates me too!... [more]

Building site accident.... (2)
Ozguru wrote: I think the picture may have come f... [more]

Happy Pi Day (1)
Ozguru wrote: The post was actually time stamped ... [more]

Yesterday / Tomorrow (in perl) (2)
daniel wrote: here is yesterday in shell, not sur... [more]

Yesterday / Tomorrow (in C for AIX) (1)
Ozguru wrote: Yes that is pre-ansi C. So sue me.... [more]

Gone to pot? (1)
Jeremy wrote: encouraging...drugs are wreaking ha... [more]

Inept Chicken Thieves (1)
Joan wrote: Ha! ... [more]

M$ vs Wikipedia (4)
skipjack wrote: Welcome back. sorry it's been a bit... [more]

Some b*st*rd cut my garden hose.... (1)
kazza wrote: They probably stole it to make a bo... [more]

Opening files from inside vi (1)
SpamBuster wrote: This post has attracted 20 spam com... [more]

Format C: Yes Yes (1)
Ozguru wrote: Also on slashdot - <a href="http://... [more]

Fletcher to coach England in cup (1)
Ozguru wrote: Or one colleague suggested: school ... [more]

A Sad Mac Tale (1)
Cindy wrote: Oh... that doesn't sound too good. ... [more]

G'day Mate

February 28, 2007

Need to run as root?

Search

Permanent Entries

Blog Roll

The Gray Monk

Short Stories

Recent Entries

Recent Comments

Categories

MuNuvians

Statistics

Ecosystem

Web Buttons

Web Rings

Syndicate

Site Meter