Although I agree with Christopher below, you should be
able to do this using Webmin. Just create a Webmin
user with access to the firewall module (there's quite
a few available for Webmin), and I'd imagine you'd
have to also suid the iptables command to allow that
user access to it.
Michael.
---
hi larry,
it is hard to imagine for what reason you would want to have apache be able
to su to root -- this could/would spell disaster in a production environment
and should be discouraged. iptables access from a non-root user as well is
exceptionally dangerous -- one command could render the
Hey Chris - Please don't Top Post
-Original Message-
Is anyone familiar with the possibility of running iptables commands as a
non-root user? I am trying to execute commands from a web page without
running apache as root or going through reconfiguration of apache to allow
it to su
Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Behalf Of Jeff Kinz
Sent: Friday, March 28, 2003 9:02 AM
To: [EMAIL PROTECTED]
Subject: Re: iptables access
Hey Chris - Please don't Top Post
-Original Message-
Is anyone familiar with the possibility of running iptables
On Fri, Mar 28, 2003 at 01:40:12PM -0500, Larry Brown wrote:
This is kind of my point. Webmin runs as root or at least executes commands
as root. With Webmin you have access granted or denied by use of a login
mechanism. I can use a login mechanism on apache to do the same granting or
see below
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Larry Brown
Sent: Friday, March 28, 2003 7:40 PM
To: [EMAIL PROTECTED]
Subject: RE: iptables access
This is kind of my point. Webmin runs as root or at least
executes commands
as root
hi larry,
my last response was unclear -- yawn -- getting ready for bed here.
you would want to run an instance of ssl httpd as root and have it listen on
an alternative port for your specific need -- iptables security in
addition -- apache security as well.
multi-tier
cheers
cc
--