Path: utzoo!utgpu!watserv1!watmath!att!att!pacbell.com!ucsd!swrinde!zaphod.mps.ohio-state.edu!uakari.primate.wisc.edu!aplcen!wb3ffv!ka3ovk!raysnec!shwake
From: shwake@raysnec.UUCP (Ray Shwake)
Newsgroups: comp.unix.shell
Subject: Re: Shell Compilers
Keywords: Shell, Code generators
Message-ID: <111@raysnec.UUCP>
Date: 23 Oct 90 16:05:26 GMT
References: <593@DIALix.oz.au>
Organization: IRS/CI - Technical Solutions Branch
Lines: 12

bernie@DIALix.oz.au (Bernd Felsche) writes:

>Does anybody out there know of Broune shell script "compilers", 
>specifically those which generate C language.  We have a large 
>suite of shell scripts which we want to protect from tampering.

	An alternative approach would involve using a compiled program
front-end which calls a read-only shell script. One such program is 
'setsh' found in Wood&Kochan's _UNIX_System_Security_. We made a few
tweaks to the program to support use of menu shells requiring interactive
input. [Note: We also used setsh to support running non-readable shell
scripts, but that requires use of setuid or setgid bits.]