Is perl-suidperl package functionality is fully supported by replaced perl in RHEL 7.0
Please provide the information that if perl-suidperl is replaced by perl , in such case setuid set on perl script file whether it will run with effective uid without loosing any functionality.
If answer for above question is no then is it possible to install perl-suidperl package and how?
I could not able to understand "This functionality has been removed in upstream perl" ?
My main problem is to run qmail-scanner, which is having perl script file with suid set.
Responses
Hi Rajesh,
If you wish to use qmail-scanner, you will need to follow the advice of its maintainers that is included in the FAQ that you link to (Qmail-Scanner Frequently Asked Questions). Specifically:
install a compiled setuid "wrapper" - which then calls qmail-scanner-queue.pl.
In the contrib directory there is an example C program, taken straight out of
the perlsec manual. Check the Makefile and "make ; make install" as root. You
must then remove the setuid setting on qmail-scanner-queue.pl:
chmod 0755 /var/qmail/bin/qmail-scanner-queue.pl
as the binary does that bit instead, and stop running perl as suidperl
(i.e. "#!/usr/bin/perl" instead of "#!/usr/bin/suidperl").
And to answer your other question: "removed in upstream Perl" means that the developers of the Perl language decided not to include the functionality in their Perl distribution any more. See Perl changelog for an explanation.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
