I am writing a simple script which restarts a hadoop slave. In the script, I have to do some initial changes as a root user. After that I have to change to user "hadoop" and perform set of commands. I was using os.system to run commands but I doubt whether it works well. For example: <pre class="prettyprint"><code>uid=pwd.getpwnam('hadoop')[2] os.setuid(uid) os.system('whoami') os.chdir('/home/hadoop/hadoop/') os.system('bin/hadoop-daemon.sh stop tasktracker') </code></pre> Again I have to perform some commands as root after this and again become user "hadoop" and execute : <pre class="prettyprint"><code>os.system('bin/hadoop-daemon.sh stop tasktracker') </code></pre> I have three questions here , <ol> <li>Is os.system is the best command that I can use to issue linux commands ?</li> <li>I am able to change from root user to user hadoop by the commands above but I am not able to change to root user (I can understand there will be security issues if they permit this, I want to know is there any possibility to do that , atleast by passing password) ?</li> <li>Does os.setuid() work ? whoami prints user hadoop but the process "tasktracker" is not stopped using those command, but if i perform the same commands manually it works fine (I use "su hadoop" instead of setuid while trying it out manually).</li> </ol> Thanks for all your help. <ul> <li>Sethu </li> </ul>

you could use: <pre class="prettyprint"><code>os.system('sudo -u hadoop bin/hadoop-daemon.sh stop tasktracker') </code></pre> or if you dont have sudo, but have su <pre class="prettyprint"><code>os.system('su hadoop -c "bin/hadoop-daemon.sh stop tasktracker"') </code></pre>

It is a much better idea to use "su" than to switch the user ID using os.setuid(). Why? <ul> <li>"su" will set up the login credentials correctly, including the group ID, and supplemental groups</li> <li>"su" will also do other useful things, such as setting environment variables (particularly if you use su - ). Maybe it will also set ulimit limits according to limits.conf.</li> </ul>

Changing user in python

Tags:

python

linux

hadoop

os.system

I am writing a simple script which restarts a hadoop slave. In the script, I have to do some initial changes as a root user. After that I have to change to user "hadoop" and perform set of commands. I was using os.system to run commands but I doubt whether it works well. For example:

uid=pwd.getpwnam('hadoop')[2]
os.setuid(uid)
os.system('whoami')
os.chdir('/home/hadoop/hadoop/')
os.system('bin/hadoop-daemon.sh stop tasktracker')

Again I have to perform some commands as root after this and again become user "hadoop" and execute :

os.system('bin/hadoop-daemon.sh stop tasktracker')

I have three questions here ,

Is os.system is the best command that I can use to issue linux commands ?
I am able to change from root user to user hadoop by the commands above but I am not able to change to root user (I can understand there will be security issues if they permit this, I want to know is there any possibility to do that , atleast by passing password) ?
Does os.setuid() work ? whoami prints user hadoop but the process "tasktracker" is not stopped using those command, but if i perform the same commands manually it works fine (I use "su hadoop" instead of setuid while trying it out manually).

Thanks for all your help.

Sethu

706

asked Nov 06 '11 04:11

sethu

3 Answers

you could use:

os.system('sudo -u hadoop bin/hadoop-daemon.sh stop tasktracker')

or if you dont have sudo, but have su

os.system('su hadoop -c "bin/hadoop-daemon.sh stop tasktracker"')

179

answered Oct 17 '22 20:10

Mike

It is a much better idea to use "su" than to switch the user ID using os.setuid().

Why?

"su" will set up the login credentials correctly, including the group ID, and supplemental groups
"su" will also do other useful things, such as setting environment variables (particularly if you use su - ). Maybe it will also set ulimit limits according to limits.conf.

answered Oct 17 '22 22:10

MarkR

This kind of scripts can be implemented much cleaner with use of fabric library: http://docs.fabfile.org/en/1.3.1/index.html Additionally it provides nice command-line interface and capabilities of remote servers management via ssh. All the python is available so you can connect to databases for example or import whatever you need.

Exactly the question about running commands as some other user can be implemented with sudo command with user arg: http://docs.fabfile.org/en/1.3.1/api/core/operations.html#fabric.operations.sudo

answered Oct 17 '22 21:10

Ivan Blinkov

Related questions
                            
                                python Decimal precision
                            
                                How can i select a part of a image using python?
                            
                                Scrapy middleware order
                            
                                How-to import constants in many files
                            
                                yaml in Google App Engine with index.html
                            
                                Python PSD layers?
                            
                                Python-Oracle Passing in a Cursor Out Parameter
                            
                                Python SMTP Errno 10060
                            
                                Python web crawler with MySQL database
                            
                                What is the difference between `>>> some_object` and `>>> print some_object` in the Python interpreter?
                            
                                How can I permanently store commands in the Python REPL/prompt?
                            
                                Methods which return values vs methods which directly set attributes in Python
                            
                                Paramiko Error: Error reading SSH protocol banner
                            
                                How to find indices of non zero elements in large sparse matrix?
                            
                                Can't use variables in pygame.draw.circle?
                            
                                Binary Phase Shift Keying in Python
                            
                                unsupported operand type(s) for /: 'str' and 'int' [duplicate]
                            
                                What are the different options for social authentication on Appengine - how do they compare?
                            
                                GAE 1.5.5 local SDK fails to run with python2.7 runtime
                            
                                Celery - schedule periodic tasks starting at a specific time

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With