[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#126406: kppp: Alternative for using noauth as suggested by README

Ernst Kloppenburg writes:

> Package: kppp Version: 4:3.1.5-1 Severity: normal Followup-For: Bug
> #126406

> as the original bug reporter says, /usr/share/doc/kppp/README.Debian
> gives the very questionable advice to set "noauth" in
> /etc/ppp/options

Are you sure that you know what this option does ?  It does not mean
that all users are allowed to change ppp settings.  It means that the
ppp client does not try to check the authentication of the ppp server
of your ISP.  Quite a lot of ISPs have broken authentication configs
on their servers, because windows clients never check them anyway.

> I found a different solution to make kppp work: add the following to
> /usr/share/doc/kppp/README.Debian

> privgroup dip

> And put the people in dip that should be able to use kppp.

> w.r.t. to security this is better, but not optimal, of course

Since noone is allowed to execute kppp unless they're in the dip
group, this would be pretty pointless, no ?  If you read
/usr/share/doc/kppp/README.Debian again, you'll see that the dip group
and its meaning is already explained there.

cheers
domi
Reply to: