From owner-freebsd-net@freebsd.org Sat Aug 19 22:13:14 2017 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id C5BB8DE8B4E for ; Sat, 19 Aug 2017 22:13:14 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id B43476719E for ; Sat, 19 Aug 2017 22:13:14 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v7JMDEGc028362 for ; Sat, 19 Aug 2017 22:13:14 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-net@FreeBSD.org Subject: [Bug 221497] Inconsistency in NETWORK group files rights for PPP Date: Sat, 19 Aug 2017 22:13:15 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: misc X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: truckman@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Aug 2017 22:13:14 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D221497 Don Lewis changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |truckman@FreeBSD.org --- Comment #3 from Don Lewis --- /usr/sbin/ppp is in group network so that only users in group network can r= un it (it has not access permission for other). /var/run/ppp and /var/log/ppp.log are probably in group network so that only users in that group can look at them. They might contain sensitive information. These files don't give permission to other. The group ownership of /etc/ppp doesn't matter since it is mode 755. Anyone can ls that directory regardless of what groups they belong to since its contents are not sensitive. The group ownership of /etc/ppp/ppp.conf doesn't matter since its permissio= ns are 600. Nobody other than root can read it, no matter what its group migh= t be set to. Basically, group ownership only matters when the group perms !=3D other per= ms. One thing that is a bit strange is why /usr/sbin/ppp gives read access to other. --=20 You are receiving this mail because: You are the assignee for the bug.=