Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.lang.python > #47107
| References | (14 earlier) <c49345c2-7dd8-4b59-9f5c-c4e7ce7a3ea0@googlegroups.com> <mailman.2721.1370428837.3114.python-list@python.org> <8df8a9df-dbb9-4f35-a6a3-b45aa32a848b@googlegroups.com> <mailman.2722.1370430879.3114.python-list@python.org> <1496e27c-7870-48d2-afb0-1bf626e24b5f@googlegroups.com> |
|---|---|
| Date | 2013-06-06 02:33 +1000 |
| Subject | Re: Apache and suexec issue that wont let me run my python script |
| From | Chris Angelico <rosuav@gmail.com> |
| Newsgroups | comp.lang.python |
| Message-ID | <mailman.2743.1370450038.3114.python-list@python.org> (permalink) |
On Wed, Jun 5, 2013 at 9:19 PM, Νικόλαος Κούρας <nikos.gr33k@gmail.com> wrote: > Τη Τετάρτη, 5 Ιουνίου 2013 2:14:34 μ.μ. UTC+3, ο χρήστης Heiko Wundram έγραψε: >> Am 05.06.2013 13:07, schrieb οΏ½οΏ½οΏ½οΏ½οΏ½οΏ½οΏ½οΏ½ οΏ½οΏ½οΏ½οΏ½οΏ½οΏ½: >> >> >Btw, since history doesnt show me his history comamnds when he logged in >> >from .au(why not really?), how can i tell what exactly did he do when he >> >logged on to the server? > >> As root has full access to your system (i.e., can change file contents >> and system state at will), and you gave him root access: you can't. And >> he made sure to remove things such as .bash_history and the syslog >> contents, I guess. At least that's what I'd have done to prove a point. In fact, I didn't even bother fiddling with syslog. All I did was .bash_history. Of course, I wasn't worried about you getting my IP addresses (one of them is public anyway, and the other isn't mine any longer than I'm using it), and nothing I did there was sufficiently serious to be worth hiding, but I just did the history so I could point out how easy this is. > I see. Thanks. > Is there some logging utility i can use next time iam offering root access to someone(if i do it) or perhaps logging a normal's account activity? You could log a normal user fairly easily, because root trumps normal users. To log root access, there are a few options: 1) Don't actually give unrestricted roots, but require the use of sudo, which logs. Not 100% perfect unless you actually restrict the commands that can be executed, but it'd at least let you have some idea that things were tampered with. 2) Provide a special bouncer. This is a little complex to describe, so bear with me. Imagine you have *two* computers, WebHost and Bouncer. You want to give root access to WebHost, so you invite someone to ssh to webroot@bouncer - the shell of that user establishes a secondary connection to root@webhost and passes everything on, but also logs it. Since *no* access to Bouncer has been granted, the logs can't be tampered with. This can be complicated to set up and secure, but it's certainly possible. However, I think it is beyond your ability, at least at the moment. 3) Provide a hacked-up root shell that logs to a network location, and disable all other shell usage. Imperfect but would probably work. 4) Require that all root shell access be done through screen/tmux, and monitor it. You can probably think of a few others, too. ChrisA
Back to comp.lang.python | Previous | Next — Previous in thread | Next in thread | Find similar | Unroll thread
Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-05-31 22:30 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-01 15:38 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-01 00:49 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-01 17:56 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-01 01:31 -0700
Re: Apache and suexec issue that wont let me run my python script Alain Ketterlin <alain@dpt-info.u-strasbg.fr> - 2013-06-01 11:03 +0200
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-01 02:19 -0700
Re: Apache and suexec issue that wont let me run my python script Paul Kölle <paul@subsignal.org> - 2013-06-02 13:51 +0200
Re: Apache and suexec issue that wont let me run my python script Anssi Saari <as@sci.fi> - 2013-06-03 18:20 +0300
RE: Apache and suexec issue that wont let me run my python script Carlos Nepomuceno <carlosnepomuceno@outlook.com> - 2013-06-04 01:13 +0300
Re: Apache and suexec issue that wont let me run my python script Michael Torrie <torriem@gmail.com> - 2013-06-03 17:23 -0600
RE: Apache and suexec issue that wont let me run my python script Carlos Nepomuceno <carlosnepomuceno@outlook.com> - 2013-06-04 02:33 +0300
Re: Apache and suexec issue that wont let me run my python script Michael Torrie <torriem@gmail.com> - 2013-06-03 22:45 -0600
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-04 17:51 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 03:12 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 03:17 -0700
Re: Apache and suexec issue that wont let me run my python script Benjamin Schollnick <benjamin@schollnick.net> - 2013-06-04 06:21 -0400
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 03:56 -0700
RE: Apache and suexec issue that wont let me run my python script Carlos Nepomuceno <carlosnepomuceno@outlook.com> - 2013-06-04 14:04 +0300
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 04:09 -0700
RE: Apache and suexec issue that wont let me run my python script Carlos Nepomuceno <carlosnepomuceno@outlook.com> - 2013-06-04 14:27 +0300
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 04:36 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 04:38 -0700
RE: Apache and suexec issue that wont let me run my python script Carlos Nepomuceno <carlosnepomuceno@outlook.com> - 2013-06-04 14:42 +0300
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 04:48 -0700
RE: Apache and suexec issue that wont let me run my python script Carlos Nepomuceno <carlosnepomuceno@outlook.com> - 2013-06-04 15:11 +0300
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 05:54 -0700
Re: Apache and suexec issue that wont let me run my python script Dennis Lee Bieber <wlfraed@ix.netcom.com> - 2013-06-04 20:41 -0400
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 05:57 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-04 23:10 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 06:17 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 00:33 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 07:40 -0700
Re: Apache and suexec issue that wont let me run my python script Mark Lawrence <breamoreboy@yahoo.co.uk> - 2013-06-04 15:49 +0100
Re: Apache and suexec issue that wont let me run my python script Chris “Kwpolska” Warrick <kwpolska@gmail.com> - 2013-06-04 17:06 +0200
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 01:11 +1000
Re: Apache and suexec issue that wont let me run my python script Joel Goldstick <joel.goldstick@gmail.com> - 2013-06-04 11:29 -0400
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 10:02 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 03:09 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 10:12 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 08:12 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 20:55 -0700
Re: Apache and suexec issue that wont let me run my python script alex23 <wuwei23@gmail.com> - 2013-06-04 21:34 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 21:40 -0700
Re: Apache and suexec issue that wont let me run my python script alex23 <wuwei23@gmail.com> - 2013-06-04 21:59 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 22:11 -0700
Re: Apache and suexec issue that wont let me run my python script alex23 <wuwei23@gmail.com> - 2013-06-04 22:23 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 22:58 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 17:01 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-04 21:35 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 18:09 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 01:26 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 18:41 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 01:53 -0700
Re: Apache and suexec issue that wont let me run my python script alex23 <wuwei23@gmail.com> - 2013-06-05 01:58 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 19:05 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 02:14 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 19:27 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 02:32 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 19:41 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 02:46 -0700
Re: Apache and suexec issue that wont let me run my python script alex23 <wuwei23@gmail.com> - 2013-06-05 02:49 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 03:32 -0700
Re: Apache and suexec issue that wont let me run my python script Mark Lawrence <breamoreboy@yahoo.co.uk> - 2013-06-05 14:23 +0100
Re: Apache and suexec issue that wont let me run my python script Steven D'Aprano <steve+comp.lang.python@pearwood.info> - 2013-06-06 03:57 +0000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 21:08 -0700
Re: Apache and suexec issue that wont let me run my python script Heiko Wundram <modelnine@modelnine.org> - 2013-06-05 11:04 +0200
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 02:19 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 19:31 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 02:37 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 19:48 +1000
Re: Apache and suexec issue that wont let me run my python script alex23 <wuwei23@gmail.com> - 2013-06-05 02:52 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 20:12 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 03:30 -0700
Re: Apache and suexec issue that wont let me run my python script Heiko Wundram <modelnine@modelnine.org> - 2013-06-05 12:37 +0200
Re: Apache and suexec issue that wont let me run my python script Antoon Pardon <antoon.pardon@rece.vub.ac.be> - 2013-06-05 12:39 +0200
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 04:07 -0700
Re: Apache and suexec issue that wont let me run my python script alex23 <wuwei23@gmail.com> - 2013-06-05 04:11 -0700
Re: Apache and suexec issue that wont let me run my python script Heiko Wundram <modelnine@modelnine.org> - 2013-06-05 13:14 +0200
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 04:19 -0700
Re: Apache and suexec issue that wont let me run my python script Heiko Wundram <modelnine@modelnine.org> - 2013-06-05 13:37 +0200
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 02:33 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 10:02 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 03:16 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 10:29 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 03:47 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 11:08 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 04:16 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 11:22 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 11:34 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 04:46 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 11:53 -0700
Re: Apache and suexec issue that wont let me run my python script Zero Piraeus <schesis@gmail.com> - 2013-06-05 14:52 -0400
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 11:58 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 05:13 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 12:18 -0700
Re: Apache and suexec issue that wont let me run my python script rusi <rustompmody@gmail.com> - 2013-06-05 11:55 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 12:03 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 05:03 +1000
Re: Apache and suexec issue that wont let me run my python script Joel Goldstick <joel.goldstick@gmail.com> - 2013-06-05 15:29 -0400
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 04:37 +1000
Re: Apache and suexec issue that wont let me run my python script Dennis Lee Bieber <wlfraed@ix.netcom.com> - 2013-06-05 19:19 -0400
Re: Apache and suexec issue that wont let me run my python script rurpy@yahoo.com - 2013-06-05 17:57 -0700
Re: Apache and suexec issue that wont let me run my python script Tim Chase <python.list@tim.thechases.com> - 2013-06-05 21:02 -0500
Re: Apache and suexec issue that wont let me run my python script rurpy@yahoo.com - 2013-06-06 11:03 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 02:24 +1000
Re: Apache and suexec issue that wont let me run my python script Joel Goldstick <joel.goldstick@gmail.com> - 2013-06-05 12:35 -0400
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 10:07 -0700
Re: Apache and suexec issue that wont let me run my python script Mark Lawrence <breamoreboy@yahoo.co.uk> - 2013-06-05 14:25 +0100
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-05 19:19 +1000
Re: Apache and suexec issue that wont let me run my python script Heiko Wundram <modelnine@modelnine.org> - 2013-06-05 11:29 +0200
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 02:33 -0700
Re: Apache and suexec issue that wont let me run my python script Heiko Wundram <modelnine@modelnine.org> - 2013-06-05 11:55 +0200
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 03:21 -0700
Re: Apache and suexec issue that wont let me run my python script Heiko Wundram <modelnine@modelnine.org> - 2013-06-05 12:33 +0200
Re: Apache and suexec issue that wont let me run my python script alex23 <wuwei23@gmail.com> - 2013-06-05 01:59 -0700
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 02:06 -0700
Re: Apache and suexec issue that wont let me run my python script Mark Lawrence <breamoreboy@yahoo.co.uk> - 2013-06-05 14:16 +0100
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 07:35 -0700
Re: Apache and suexec issue that wont let me run my python script Serhiy Storchaka <storchaka@gmail.com> - 2013-06-05 17:46 +0300
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 07:56 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 02:37 +1000
Re: Apache and suexec issue that wont let me run my python script Νικόλαος Κούρας <nikos.gr33k@gmail.com> - 2013-06-05 10:05 -0700
Re: Apache and suexec issue that wont let me run my python script Chris Angelico <rosuav@gmail.com> - 2013-06-06 03:19 +1000
RE: Apache and suexec issue that wont let me run my python script Carlos Nepomuceno <carlosnepomuceno@outlook.com> - 2013-06-04 16:13 +0300
RE: Apache and suexec issue that wont let me run my python script Carlos Nepomuceno <carlosnepomuceno@outlook.com> - 2013-06-04 14:58 +0300
csiph-web