stackoom
  简体   繁体   中英

How does a C program using popen(3) to interact with system compare with bash shell?

 原文  2013-01-10 01:51:07       c/ linux

Question

Are there any limitations using a C 'shell emulator' in this way for a user to send commands to the kernel (in linux)? As an afterthought question, if you set a user to not have shell access, what stops them using something like this to interact with the kernel? (by say running the program from shell_exec via php)?

(by restricting the user, I mean in /etc/passwd) Thanks

1 answers

solution1
 1  2013-01-10 01:57:41

Okay, there are several issues here.

First off, popen isn't terrifically satisfactory as a way to emulate a shell, because you won't be able to create your own pipelines and you'll constantly be fighting permissions and things like that.

Second, popen doesn't protect you particularly against malicious commands anyway.

What you really want is to use a restricted shell .

Update

In answer to your second question, pretty much nothing. Which is why you should use that with great care.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Why is the following shell command working when executed directly in command line, but not working when executed through C program using popen/system? How to store the output of C program using Bash shell scripting How can I enter continuously by another C++ program in C system / popen command? How to run a program within a C program and interact with it How to debug a C program which execute bash shell script with GDB? Executing ssh command in c program using popen() Read output of avrdude in C program using popen() Bash shell program starts C programs Environment variables not visible in shell script executed using popen in c Bash expansion does not work in popen
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM