From owner-freebsd-bugs Thu Nov 7 23:41:18 1996 Return-Path: owner-bugs Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id XAA15776 for bugs-outgoing; Thu, 7 Nov 1996 23:41:18 -0800 (PST) Received: from nike.efn.org (resnet.uoregon.edu [128.223.170.28]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id XAA15764; Thu, 7 Nov 1996 23:41:09 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by nike.efn.org (8.7.5/8.7.3) with SMTP id XAA17837; Thu, 7 Nov 1996 23:40:33 -0800 (PST) Date: Thu, 7 Nov 1996 23:40:31 -0800 (PST) From: John-Mark Gurney X-Sender: jmg@nike Reply-To: John-Mark Gurney To: Peter Wemm cc: Chris Timmons , FreeBSD-gnats@freefall.freebsd.org, GNATS Management , freebsd-bugs@freefall.freebsd.org Subject: Re: bin/1973: pppd uses /etc/ppp/options.tty after command line args In-Reply-To: <199611080540.NAA25079@spinner.DIALix.COM> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-bugs@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 8 Nov 1996, Peter Wemm wrote: > It's part of the security design, any changes here should be done rather > carefully. pppd is supposedly able to be configured to be able to be run > relatively safely setuid-root on an "open" system, and the options. > is part of this. If you allow normal users to defeat the options.tty > ordering, it may as well not be there. If you have a "closed" system > where users are not able to mess with the command line options, it's not > an issue (as you pointed out). > > IMHO, a compile-time option would be the safest thing here. actually.. I was thinking about how the code is layed out.. and if it's done the proper way the only place that it could affect anything would be if it's in the /etc/options file? would that satisfy the requirements? thanks for your comments... ttyl.. John-Mark gurney_j@efn.org http://resnet.uoregon.edu/~gurney_j/ Modem/FAX: (541) 683-6954 (FreeBSD Box) Live in Peace, destroy Micro$oft, support free software, run FreeBSD (unix)