Re: ip-up question

To: Jim Foltz <aa204@acorn.net>
Cc: debian-user@lists.debian.org
Subject: Re: ip-up question
From: Francois Gouget <fgouget@club-internet.fr>
Date: Tue, 15 Jul 1997 15:38:23 +0200 (MET DST)
Message-id: <[🔎] Pine.LNX.3.95q.970715153455.920A-100000@silver.dolphin>
In-reply-to: <[🔎] 9707150122.AA25825@acorn.net>

On Mon, 14 Jul 1997, Jim Foltz wrote:

> Is it safe to put these lines in the /etc/ppp/ip-up scripts? $6 is passed 
> to the script using the ipparam option of pppd and is the name of the 
> user initiating the ppp link.
> 
> if [ -e "/home/$6/.ip-up" ]; then
>    cd /home/"$6"
>    . .ip-up
> fi

	No because /etc/ppp/ip-up is executed with root permission so the
script /home/<user>/.ip-up would be executed with root permission !!!
Certainly not something to allow.
	Maybe doing a su before would be enough to shut the security
problem though:

if [ -e "/home/$6/.ip-up" ]; then
	cd /home/"$6"
	su $6 -c .ip-up
fi

-- 
Francois Gouget
fgouget@club-internet.fr                http://www.mygale.org/~fgouget/


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- ip-up question
  - From: aa204@acorn.net (Jim Foltz)

Prev by Date: Linux Journal "Reader's Choice Awards"
Next by Date: Re: Linux Journal "Reader's Choice Awards"
Previous by thread: ip-up question
Next by thread: Re: ip-up question
Index(es):
- Date
- Thread