Re: plog

To: aa204@acorn.net
Cc: Robert Kerr <kerrr@et.byu.edu>, Debian Users <debian-user@lists.debian.org>
Subject: Re: plog
From: Ben Collins <bmc@it.larc.nasa.gov>
Date: Fri, 15 Jan 1999 11:27:18 -0500
Message-id: <[🔎] 19990115112718.A4536@it.larc.nasa.gov>
In-reply-to: <[🔎] 19990115110024.C806@home>; from Jim Foltz on Fri, Jan 15, 1999 at 11:00:24AM -0500
References: <[🔎] Pine.HPX.4.02.9901142031500.28856-100000@hebron.et.byu.edu> <[🔎] 19990114223925.E886@visi.net> <[🔎] 19990115110024.C806@home>

On Fri, Jan 15, 1999 at 11:00:24AM -0500, Jim Foltz wrote:
> > You have to run plog as root. The reason that ppp.log isn't world
> > readable is that your ppp password is more than likely in the log file.
> 
> Under what conditins does the password show up? I just grep'd my 
> /var/log/ppp.log for my password, andi t wasn't there. Is it because
> I use CHAP that it doesn't show up?

Not sure since I use pap, but my log shows all the transactions between
the client and server, including the plain text password as gotten from
/etc/ppp/peers/* (which is 600 root.root by default).

Very simple solution is be careful who you add to groups other than
'staff' and 'users'. Those groups are usually there for administration
reasons. If you need a new group for access control of users, don't use
one of the ones already there, make a new one.

-- 
-----    -- - -------- --------- ----  -------  -----  - - ---   --------
Ben Collins <b.m.collins@larc.nasa.gov>                  Debian GNU/Linux
UnixGroup Admin - Jordan Systems Inc.                 bcollins@debian.org
------ -- ----- - - -------   ------- -- The Choice of the GNU Generation

Reply to:

References:
- plog
  - From: Robert Kerr <kerrr@et.byu.edu>
- Re: plog
  - From: Ben Collins <bmc@visi.net>
- Re: plog
  - From: Jim Foltz <aa204@acorn.net>

Prev by Date: Repairing a HD with fsck?
Next by Date: man page for hwclock
Previous by thread: Re: plog
Next by thread: Re: plog
Index(es):
- Date
- Thread