Date: Sat, 19 Aug 2017 22:13:15 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-net@FreeBSD.org Subject: [Bug 221497] Inconsistency in NETWORK group files rights for PPP Message-ID: <bug-221497-2472-4LK9PjIcnG@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-221497-2472@https.bugs.freebsd.org/bugzilla/> References: <bug-221497-2472@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D221497 Don Lewis <truckman@FreeBSD.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |truckman@FreeBSD.org --- Comment #3 from Don Lewis <truckman@FreeBSD.org> --- /usr/sbin/ppp is in group network so that only users in group network can r= un it (it has not access permission for other). /var/run/ppp and /var/log/ppp.log are probably in group network so that only users in that group can look at them. They might contain sensitive information. These files don't give permission to other. The group ownership of /etc/ppp doesn't matter since it is mode 755. Anyone can ls that directory regardless of what groups they belong to since its contents are not sensitive. The group ownership of /etc/ppp/ppp.conf doesn't matter since its permissio= ns are 600. Nobody other than root can read it, no matter what its group migh= t be set to. Basically, group ownership only matters when the group perms !=3D other per= ms. One thing that is a bit strange is why /usr/sbin/ppp gives read access to other. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-221497-2472-4LK9PjIcnG>