|
Posted by Richard Lynch on 02/08/05 20:31
Phil Ewington - 43 Plc wrote:
> For some reason user_prefs will not open
> for read/write even when I tested it under apache.apache and chmod'd to
> 755,
> perhaps because /home is owned by root?
Something went wrong with this test.
You SHOULD have been able to read/write that file in PHP, assuming
'apache' is the user PHP runs as. Use http://php.net/phpinfo to confirm
that it really *IS* 'apache' user that's running apache/php.
As far as the sudo stuff goes, just be sure you give the PHP user as
LITTLE power as you can to get the job done.
To that end, I think the idea of the PHP user editing a copy of the files,
and then a cron job from root to double-check the files and copy them over
if they seem valid is the best solution.
You can even run all kinds of extra checks in the routine that checks the
syntax of the files.
For example, it's one thing for the .procmailrc to be valid syntax: But
you could add some extra PHP code to check for some very specific things
you do NOT want to happen. You could even check that the top part of the
files "match" and only a few (no more than X) new lines have been added by
PHP.
And you could check for specific things in the new lines, like 'root' if
you wanted to disallow somebody messing with 'root' account.
As many extra pieces of armour you can add to make SURE that the file is
being changed in the way you intended is good.
You can even intentionally write the code in a way that makes it easy for
you to add more checks.
Something as simple as:
if (...){
error_log("Hack attempt: trying to break sendmail with 'root' acces");
exit;
}
if (...){
error_log("Hack attempt: ...");
exit;
}
..
..
..
will let you add in new tests as they occur to you.
When you're done, put yourself in the shoes of a Bad Guy, and pretend your
worst enemy -- the person on this Earth you most dislike, has written this
code, and ask yourself: "How can I break in to this?" :-)
--
Like Music?
http://l-i-e.com/artists.htm
[Back to original message]
|