[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: pppd changes permission to /dev/ttyS1 (my modem)

Quoting Piotr Krukowiecki (piotr@pingu.ii.uj.edu.pl):

> But let me quote:
> 
> > Debian has to be built for people who *do* care, so advice that
> > compromises security is not to be welcomed here
> 
> For me it says sth like this:
> Debian is only for users who care about security, so if you don't, we
> don't want you here.
> 
> I hope others don't think like that.
> This irritated me, which influenced on the tone of my post.

It disappoints me that you appear not to understand my statement.

Me: "Debian has to be built for people who *do* care"
You: "Debian is only for users who care about security"

The design of Linux and the configuration of Debian is aimed at people
who have the highest regard for security. If that were not true, then
those safety-concious people would leave the project, because you can't
strengthen an insecure design. (You *can* relax the security on a
secure system.)

That design goal does not exclude anyone from using Debian just
because they're not security-conscious.

Me: "so advice that compromises security is not to be welcomed here"
You: "so if you don't, we don't want you here"

See the difference:
"bad advice is not welcomed" does not mean "you are not welcomed".


You originally asked how to make pppd stop removing it [g+w] ?
I don't know the answer to that question, but I hope the answer
is "you can't" because it opens a security hole. The fact that
*you* don't mind about security holes doesn't mean there isn't
a security hole and doesn't influence the developers' wishes to
make a secure system. (That's why you will come across programs
that will refuse to run if they find a file which has what they
consider are the wrong permissions.)

> That was no advice. It was a statement.

I can't understand that bit.

> So say how it should be, but don't say me how i should do it.
 
With respect, I don't think I told you how to do anything. I did tell
someone else that their advice (dialout group for PPP access) was wrong
and that dip is right. You said dip was wrong. I disagreed.

I gave you a possible workaround. I certainly didn't say you should
use it. 

To summarise: You are welcome here. You are welcome to compromise
the security of your system as much as you like. Please don't
encourage others to do likewise. Please don't criticise people for
pointing out any security weaknesses in other's advice.

Cheers,

-- 
Email:  d.wright@open.ac.uk   Tel: +44 1908 653 739  Fax: +44 1908 655 151
Snail:  David Wright, Earth Science Dept., Milton Keynes, England, MK7 6AA
Disclaimer:   These addresses are only for reaching me, and do not signify
official stationery. Views expressed here are either my own or plagiarised.
Reply to: