Re: PPP doesn't like anyone but root???

To: Craig Sanders <cas@taz.net.au>
Cc: Francis Swasey <swasey@together.net>, debian-user@lists.debian.org
Subject: Re: PPP doesn't like anyone but root???
From: Rob Browning <rlb@cs.utexas.edu>
Date: 12 May 1997 22:04:56 -0500
Message-id: <87g1vs6phv.fsf@nevermore.csres.utexas.edu>
In-reply-to: Craig Sanders's message of Tue, 13 May 1997 12:37:12 +1000 (EST)
References: <Pine.LNX.3.96.970513123135.5666c-100000@siva.taz.net.au>

Craig Sanders <cas@taz.net.au> writes:

> NOTE: doing making pppd setuid root is a potential security hole.
> 
> alternatively, write a wrapper shell script which calls pppd with the
> appropriate parameters, and then configure sudo or super to allow
> certain users/groups to run your shell script as root.

I strongly recommend that you use sudo, super, or only launch pppd as
root rather than making pppd suid root.  sudo's easy to use, and much
safer.

You don't even need the wrapper script (at least not with sudo), it'll
take arguments for the command it's going to execute as root.  So if
you enable sudo access to pppd for yourself, you can just say (for
example):

  sudo pppd file /etc/ppp.options_out connect 'chat -f /etc/ppp.chatscript'

to launch pppd.

Note that you *can* use a wrapper script if you want, but you don't
have to.

-- 
Rob

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

Follow-Ups:
- Re: PPP doesn't like anyone but root???
  - From: Jim Smith <jim@oz.net>
- Re: PPP doesn't like anyone but root???
  - From: Craig Sanders <cas@taz.net.au>

References:
- Re: PPP doesn't like anyone but root???
  - From: Craig Sanders <cas@taz.net.au>

Prev by Date: Re: Problems with Frozen
Next by Date: Re: Problems with Frozen
Previous by thread: Re: PPP doesn't like anyone but root???
Next by thread: Re: PPP doesn't like anyone but root???
Index(es):
- Date
- Thread