HPE Community
Operating System - Linux
1840190 Members
4031 Online
110162 Solutions
New Discussion

su_group

 
SOLVED
Go to solution
B.O
Occasional Contributor

‎11-02-2006 09:31 PM

‎11-02-2006 09:31 PM

su_group

I can't run su_group command on linux clients, but can in Solaris. The command path exists but gives errors: 'permission denied' or 'cannot open perl script'. Thanks.
0 Kudos
Reply
2 REPLIES 2
Matti_Kurkela
Honored Contributor

‎11-02-2006 09:57 PM

‎11-02-2006 09:57 PM

Solution

Re: su_group

This is not a standard command on any Linux distribution I know.

The "cannot open perl script" might suggest that the su_group command is actually implemented as a script. Check the permissions of the command file: for scripts, the "execute" permission alone is not enough. The user running the script needs the "read" permission too.

You can also use the "file" command to identify the file type: if "file /whatever/path/su_group" has a word "text" in its output, you can be sure the su_group is actually a script.

You'll need to check the pathname of the command interpreter the script uses. It's normally specified on the first line of the script, and it should look like this:
#!/some/script/interpreter

If the script does not have this kind of line, it is normally executed using /bin/sh.

When you know the name of the interpreter, check the permissions of the interpreter file. If the interpreter does not exist at the specified path or has incorrect permissions, this may cause the error messages you're seeing.

The name "su_group" seems to suggest that the command might be designed to change the user's identity somehow. To do that, it needs root privileges... and in Linux, the suid bit *will not* take effect on scripts. Scripts with a suid bit are generally considered a bad idea: please avoid them. But if you must, the workaround could be a special perl interpreter named "suidperl". It is an optional component of a perl installation: read the documentation carefully before using it.
MK
Reply
B.O
Occasional Contributor

‎11-02-2006 10:57 PM

‎11-02-2006 10:57 PM

Re: su_group

Matti, Thanks for your prompt response to this mail, appreciate. I'll check the script/command again and look out for any irregularities etc, thks.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.