Date: Wed, 10 Sep 1997 02:25:34 +0100 From: Brian Somers <brian@awfulhak.org> To: =?KOI8-R?B?4c7E0sXKIP7F0s7P1w==?= <ache@nagual.pp.ru> Cc: Brian Somers <brian@FreeBSD.ORG>, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG, cvs-usrsbin@FreeBSD.ORG Subject: Re: cvs commit: src/usr.sbin/ppp command.c Message-ID: <199709100125.CAA20424@awfulhak.demon.co.uk> In-Reply-To: Your message of "Wed, 10 Sep 1997 05:14:57 %2B0400." <Pine.BSF.3.96.970910051325.22836B-100000@lsd.relcom.eu.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Tue, 9 Sep 1997, Brian Somers wrote: > > > brian 1997/09/09 16:13:33 PDT > > > > Modified files: > > usr.sbin/ppp command.c > > Log: > > Don't start an interactive shell from a > > telnet prompt. > > Hmm. Are you shure it is neccessary? I think it was allowed only when > password entered and ppp goes back to user priveledges before > starting shell. True, but this change just stops the following: $ telnet localhost 3000 ppp on mach> passwd xxxxx ppp ON mach> shell pwd help x exit exit exit ppp ON mach> quit It doesn't block running shell commands like: ppp ON mach> shell mycommand I think it would be overkill to go and allocate a pty (the only way to make an interactive shell work from the telnet session) when the user can easily just ^Z instead :-) Of course if the telnet client is on a different machine..... > -- > Andrey A. Chernov > <ache@null.net> > http://www.nagual.pp.ru/~ache/ > -- Brian <brian@awfulhak.org>, <brian@freebsd.org> <http://www.awfulhak.org>; Don't _EVER_ lose your sense of humour....
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199709100125.CAA20424>