From owner-cvs-usrsbin Fri Oct 11 08:27:54 1996 Return-Path: owner-cvs-usrsbin Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id IAA22396 for cvs-usrsbin-outgoing; Fri, 11 Oct 1996 08:27:54 -0700 (PDT) Received: from SandBox.CyberCity.dk (disn124.cybercity.dk [194.16.57.124]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id IAA22387; Fri, 11 Oct 1996 08:27:36 -0700 (PDT) Received: (from sos@localhost) by SandBox.CyberCity.dk (8.7.6/8.7.3) id RAA00223; Fri, 11 Oct 1996 17:08:17 +0200 (MET DST) Message-Id: <199610111508.RAA00223@SandBox.CyberCity.dk> Subject: Re: cvs commit: src/usr.sbin/ppp command.c To: ache@nagual.ru (=?KOI8-R?Q?=E1=CE=C4=D2=C5=CA_=FE=C5=D2=CE=CF=D7?=) Date: Fri, 11 Oct 1996 17:08:17 +0200 (MET DST) From: "Soren Schmidt" Cc: sos@FreeBSD.org, joerg_wunsch@uriah.heep.sax.de, sos@freefall.freebsd.org, CVS-committers@freefall.freebsd.org, cvs-all@freefall.freebsd.org, cvs-usrsbin@freefall.freebsd.org In-Reply-To: <199610111353.RAA01030@nagual.ru> from "=?KOI8-R?Q?=E1=CE=C4=D2=C5=CA_=FE=C5=D2=CE=CF=D7?=" at Oct 11, 96 05:53:55 pm From: sos@FreeBSD.org Reply-to: sos@FreeBSD.org X-Mailer: ELM [version 2.4 PL25 ME8b] MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-cvs-usrsbin@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk In reply to áÎÄÒÅÊ_þÅÒÎÏ× who wrote: > > > Oops... I guess it was too late in the night when I did that... > > > > Any good suggestions as how to make this work securely ?? > > Maybe only allowing the program named in the ppp.xxx file, that > > way security is at the/etc/ppp level. > > Not so complex, just disable 'shell' command in telnet mode. > As I remember ppp have some flag indicating it running with -auto, > and/or some flag indicating telnet mode, shell command must check > those flags and refuse execution. Will look at that solution... -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Søren Schmidt (sos@FreeBSD.org) FreeBSD Core Team Even more code to hack -- will it ever end ..