[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: /etc/ppp.* again ...



On 30 Dec 1996, Rob Browning wrote:

osiris >Christoph Lameter <clameter@waterf.org> writes:
osiris >
osiris >> Opening up /etc/ppp for access from group dip is really not secure.
osiris >> You will invite all people with dialup ip access to review your ppp
osiris >> configuration and the secrets files.
osiris >
osiris >My two cents.  All ppp config files should be in /etc/ppp.  If you
osiris >need protection of some of those files (which I agree you do), either
osiris >create a protected (i.e. non dip) directory in there, or just change
osiris >the permissions on the files so that group dip can't read them.

They will be arranged in a different way in ppp 2.3 which provides
also better means of handling the security issues. I am very hesitant to
move files from the standard locations especially now since its already in
1.2 and since they have been in those locations in prior versions of
debian and other distributions as well.

I see work on ppp 2.2.0f essentially as finished. Apart from bug fixes I
do not plan to do anything with the package.

I am running 2.3 on my main development system.

--- +++ --- +++ --- +++ --- +++ --- +++ --- +++ --- +++ ---
PGP Public Key  =  FB 9B 31 21 04 1E 3A 33  C7 62 2F C0 CD 81 CA B5 


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-REQUEST@lists.debian.org . Trouble? e-mail to Bruce@Pixar.com


Reply to: