aboutsummaryrefslogtreecommitdiff
path: root/doc
diff options
context:
space:
mode:
authorJoey Hess <joey@kitenet.net>2012-08-09 11:48:30 -0400
committerJoey Hess <joey@kitenet.net>2012-08-09 11:48:30 -0400
commit94f826498cde963ab88748a27818b23453e0b94a (patch)
treeed880e127846f2dd26c95e02b04c4c260ddef548 /doc
parent104539c5364097ad5082761da305dda95b140c0d (diff)
downloadikiwiki-94f826498cde963ab88748a27818b23453e0b94a.tar
ikiwiki-94f826498cde963ab88748a27818b23453e0b94a.tar.gz
update ikiwiki-update-wikilist docs to suggest putting it in /etc/sudoers
Diffstat (limited to 'doc')
-rw-r--r--doc/ikiwiki-update-wikilist.mdwn7
-rw-r--r--doc/security.mdwn2
2 files changed, 6 insertions, 3 deletions
diff --git a/doc/ikiwiki-update-wikilist.mdwn b/doc/ikiwiki-update-wikilist.mdwn
index e5ea72e36..b6330c5e5 100644
--- a/doc/ikiwiki-update-wikilist.mdwn
+++ b/doc/ikiwiki-update-wikilist.mdwn
@@ -8,8 +8,11 @@ ikiwiki-update-wikilist [-r]
# DESCRIPTION
-`ikiwiki-update-wikilist` is designed to be made suid root, but is not installed
-suid by default. If made suid, it allows users to add or remove their names
+`ikiwiki-update-wikilist` is designed to be safely run as root by arbitrary
+users, either by being made suid and using the (now deprecated suidperl), or
+by being configured in `/etc/sudoers` to allow arbitrary users to run.
+
+All it does is allows users to add or remove their names
from the `/etc/ikiwiki/wikilist` file.
By default, the user's name will be added.
diff --git a/doc/security.mdwn b/doc/security.mdwn
index c3b62cd3c..afefd1bc3 100644
--- a/doc/security.mdwn
+++ b/doc/security.mdwn
@@ -110,7 +110,7 @@ runs ikiwiki to update a given wiki. The wrapper can in turn be made suid,
for example to be used in a [[post-commit]] hook by people who cannot write
to the html pages, etc.
-If the wrapper script is made suid, then any bugs in this wrapper would be
+If the wrapper program is made suid, then any bugs in this wrapper would be
security holes. The wrapper is written as securely as I know how, is based
on code that has a history of security use long before ikiwiki, and there's
been no problem yet.