[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ip-up question



On Mon, 14 Jul 1997, Jim Foltz wrote:

> Is it safe to put these lines in the /etc/ppp/ip-up scripts? $6 is passed 
> to the script using the ipparam option of pppd and is the name of the 
> user initiating the ppp link.
> 
> if [ -e "/home/$6/.ip-up" ]; then
>    cd /home/"$6"
>    . .ip-up
> fi

	No because /etc/ppp/ip-up is executed with root permission so the
script /home/<user>/.ip-up would be executed with root permission !!!
Certainly not something to allow.
	Maybe doing a su before would be enough to shut the security
problem though:

if [ -e "/home/$6/.ip-up" ]; then
	cd /home/"$6"
	su $6 -c .ip-up
fi

-- 
Francois Gouget
fgouget@club-internet.fr                http://www.mygale.org/~fgouget/


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .


Reply to: