From owner-freebsd-current Sun Sep 21 08:01:02 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA03333 for current-outgoing; Sun, 21 Sep 1997 08:01:02 -0700 (PDT) Received: from mail.scsn.net (scsn.net [206.25.246.12]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id IAA03326 for ; Sun, 21 Sep 1997 08:00:59 -0700 (PDT) Received: from rhiannon.scsn.net ([208.133.153.121]) by mail.scsn.net (Post.Office MTA v3.1 release PO203a ID# 0-41950U6000L1100S0) with ESMTP id AAA219; Sun, 21 Sep 1997 11:02:09 -0400 Received: (from root@localhost) by rhiannon.scsn.net (8.8.7/8.8.5) id LAA00550; Sun, 21 Sep 1997 11:00:55 -0400 (EDT) Message-ID: <19970921110054.48267@scsn.net> Date: Sun, 21 Sep 1997 11:00:54 -0400 From: "Donald J. Maddox" To: "Jordan K. Hubbard" Cc: current@FreeBSD.ORG Subject: Re: Problems with -current ppp Reply-To: dmaddox@scsn.net References: <19970920230953.49189@coladlp2.scsn.net> <29665.874815981@time.cdrom.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.81 In-Reply-To: <29665.874815981@time.cdrom.com>; from Jordan K. Hubbard on Sat, Sep 20, 1997 at 09:26:21PM -0700 Sender: owner-freebsd-current@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, Sep 20, 1997 at 09:26:21PM -0700, Jordan K. Hubbard wrote: > > On Sat, Sep 20, 1997 at 07:36:13PM -0700, Jordan K. Hubbard wrote: > > > > Thanks. I was really hoping there was some magic that would make > > > > typing a password unnecessary, like before, but you can't win 'em all, eh > :-( > > > > > > Not and have any semblance of security on your ppp line, no. ;-) > > > > > > Jordan > > > > Well, this is a one-user box, so that's not really a concern. In any case, > > Brian informed me in private mail of a neat little trick to accomplish what > > I wanted. > > Tell me your IP address and the hours when you're generally on and > surfing. I'll show you how "one user" that box is. ;-) > > Jordan Ok. My IP addres is dynamically assigned by my ISP (scsn.net), so the most I can tell you is that it will be ppp???.coladlp?.scsn.net. I usually only use the PPP connection long enough to get my email, then kill it. Most incoming connections are denied by tcp wrappers. Good luck :-) Seriously, I understand the need for security in ppp, and I would rather have it secureable even if it means a little inconvenience (like having to type a password). However, since the window of insecurity is so small in this case, if I can trade security for convenience, I will. This is not an appeal to have ppp's security enhancements reverted. Clearly, making ppp more secure is a Good Thing.