Re: PPP doesn't like anyone but root???

To: Craig Sanders <cas@taz.net.au>
Cc: Francis Swasey <swasey@together.net>, debian-user@lists.debian.org
Subject: Re: PPP doesn't like anyone but root???
From: Rob Browning <rlb@cs.utexas.edu>
Date: 13 May 1997 19:22:51 -0500
Message-id: <87rafaj40g.fsf@nevermore.csres.utexas.edu>
In-reply-to: Craig Sanders's message of Wed, 14 May 1997 09:51:17 +1000 (EST)
References: <Pine.LNX.3.96.970514093809.5666l-100000@siva.taz.net.au>

Craig Sanders <cas@taz.net.au> writes:

> The whole point of the wrapper script is to prevent users from being able 
> to give any options to pppd (which is where the potential vulnerability
> lies).

Hmm, I wasn't thinking about the fact that the options were a big deal
(but of course they are when you have something like "connect").  I
was mostly just trying to encourage people to avoid a suid pppd.

> call this script '/usr/local/bin/user-pppd', and then enable sudo/super
> access to this script instead of /usr/sbin/pppd.

This is a much better idea.

-- 
Rob

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- Re: PPP doesn't like anyone but root???
  - From: Craig Sanders <cas@taz.net.au>

Prev by Date: Re: motherboard
Next by Date: Possible frozen problem....
Previous by thread: Re: PPP doesn't like anyone but root???
Next by thread: Netscape 4 ...
Index(es):
- Date
- Thread