I have ubuntu 8.04 and I want to write a bash script that runs as root which every user can run.
I myself can do sudo.
How do I do that?
CLARIFICATION: I don't want to do it with sudo, because then users will have to type their password. I just want them to run the script as root, perhaps something setuid, dunno.
Best Answer
If this was a normal binary, you could setuid by running
Unfortunately, scripts can't be setuid. (Well you can, but it's ignored). The reason for this is that the first line of the script tells the OS what interpreter to run the script under. For example if you had a script with:
You'd actually end up running
Obviously, you'd need the interpreter to be setuid, which would then mean all scripts would be setuid. This would be bad.
You can do this with sudo by putting the following in your /etc/sudoers file by running visudo.
And now any user can run
This allows them to run the script without typing in their password.
There is an alternative that doesn't require sudo in the command, which requires creating a small setuided binary that execs your script, but every additional setuid binary adds another potential security problem.