www.rodneybeede.com "I would love to change the world, but they won't give me the source code" - unknown

Why suid scripts aren't safe - Last Modified 2013-12-10 17:07 UTC - Created 2011-02-25 02:43 UTC

Some links that explain why:

Your best off using a C wrapper or direct binary command entries in your sudoers file.

Remember that if you skipped the setuid (suid) attribute on a shell script and opted to place an entry in your sudoers for the shell script you are just as bad off. Most likely you've achieved the same security problem even if you attempted more "secure" settings in your sudoers file config.