On Sun, Jul 16, 2006 at 11:34:44AM +0530, Dinesh Joshi wrote:
On Sunday 16 July 2006 11:14, Aparna Appaiah wrote: *snip*
However, running the script gives me this:
[aparna@debian bin] ./netup.sh Error: Unable to write database "/var/lib/vnstat/eth0". Make sure it's write enabled for this user. Database not updated. Setting up IP spoofing protection: /etc/init.d/networking: line 17: /proc/sys/net/ipv4/conf/all/rp_filter: Permission denied
AFAIK you can't run it as a regular user. You need root privileges to run it. But I'm not 100% sure. It is writing to /proc fs which is only possible by root.
That's true. Giving root ownership and sticky bit to a script does not entitle it access to root files while a user is logged in. The permission is limitted to allowing the user to run the script, not its access to root files.
The script itself could be modified to have the sudo command and passowrd included in it. Then it need not be root owned. The password will be user password only so the cracker may only get user access if such a situation arises.
Regards,
Rony.
___________________________________________________________ All New Yahoo! Mail � Tired of Vi@gr@! come-ons? Let our SpamGuard protect you. http://uk.docs.yahoo.com/nowyoucan.html