[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

udev: chown of /dev/ppp

Hello debian-team,

I checked, that /dev/ppp is set to 600 with owner root:root.

IMO this is not a good idea. IMOI this might be cause a security hole, because 
applications, which are using /dev/ppp also must be run as root. I think, for 
a normal and unexperienbced user it is no good idea, to let him run as root, 
and of course, the other thing is, applications which a normal user is 
normally allowed to run, should be run under a dedicated group or owner.

In this case my suggestion is the following: 

Normal users, which are allowed to dial out, should be added to group 
"dialout" by root. Device /dev/ppp should be set to 660, and owner 

As /dev/ppp is created by udev (I hope I am correct here!), udev should set 
the permisions corectly by default. I thinbk, this is set by 

I suggest, to add these changes in the next version of udev. Doing so as a 
standard, it is easy to set all dialout applications, like kppp, umtsmon, gppp 
and other similar to execute as group "dialout".

Anyway, I will be pleased, if I could improve  debian  a little bit with my 

Best regards

Hans-J. Ullrich

Reply to: