Why suid scripts aren't safe

Last Modified: Tue, 10 Dec 2013 17:07:02 +0000 ; Created: Fri, 25 Feb 2011 02:43:18 +0000

Some links that explain why:

Your best off using a C wrapper or direct binary command entries in your sudoers file.

Remember that if you skipped the setuid (suid) attribute on a shell script and opted to place an entry in your sudoers for the shell script you are just as bad off. Most likely you've achieved the same security problem even if you attempted more "secure" settings in your sudoers file config.