Re: plog
ktb writes:
> Hmmmm, my ppp.log file shows the same:
> ~$ ls -l /var/log/ppp.log
> -rw-r----- 1 root adm 848182 Jan 14 16:04 /var/log/ppp.log
> And as a regular user gives me this:
> ~$ plog
> Jan 14 16:03:25 crossyourfingers pppd[772]: sent [LCP EchoReq id=0x76 magic=0x3f1d]
Your "regular user" is in group adm, right? /var/log/ppp.log is in group
adm and is group readable.
> I looked at the file /var/log/ppp.log itself as a regular user using
> "cat" and found my password there. So if I don't have to use plog as
> root do I have a security problem?
Depends. Do you trust your "regular user"?
I don't know why your regular user would be in adm, though.
--
John Hasler
john@dhh.gt.org (John Hasler)
Dancing Horse Hill
Elmwood, WI
Reply to:
- References:
- plog
- From: Robert Kerr <kerrr@et.byu.edu>
- Re: plog
- From: Ben Collins <bmc@visi.net>
- Re: plog
- From: ktb <ktb@binary.net>