I am not sure to be totally honest ... but i would have thought you setuid on add.sh to allow it to add the users but i don't think it would work for user nobody. ..what if you tried something like this
user nobody (Apache) calls add.sh (initially started by user nobody) add.sh changes user to say user admin useradd runs add.sh exits user admin add.sh ends either that or make sure user nobody is a member of the devel group.. but that could lead to security issues. > -----Original Message----- > From: tim tom [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, 18 September 2002 12:14 PM > To: Peter Houchin; [EMAIL PROTECTED] > Subject: RE: [PHP] adding unix account via system command > > > Dear Pete, > Yes, apache runs as nobody. But I have setuid add.sh. Wouldn't > that be sufficient ? > > -- > tim > > --- Peter Houchin <[EMAIL PROTECTED]> wrote: > > you need to make sure that the web has permission to use that file .. my > > guess is it don't have permission hence why you can run add.sh from the > > command line (where your not your web user I'm assuming). > > > > > __________________________________________________ > Do You Yahoo!? > Yahoo! Autos - Get free new car price quotes > http://autos.yahoo.com > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
