From owner-freebsd-questions Wed Sep 1 6:31:23 1999 Delivered-To: freebsd-questions@freebsd.org Received: from voyager.c-com.net (voyager.c-com.net [209.127.0.2]) by hub.freebsd.org (Postfix) with ESMTP id 6B1BA151CF for ; Wed, 1 Sep 1999 06:31:11 -0700 (PDT) (envelope-from tbrock@mail.phoenix.net) Received: from fdho-w5.fdnet.com (dial44.as3.c-com.net [209.127.53.102]) by voyager.c-com.net (8.9.3/8.9.1) with SMTP id IAA05898 for ; Wed, 1 Sep 1999 08:29:28 -0500 (CDT) From: Tony Reply-To: tbrock@mail.phoenix.net Organization: NA To: freebsd-questions@FreeBSD.ORG Subject: Re: user PPP only works for root Date: Wed, 1 Sep 1999 08:23:41 -0500 X-Mailer: KMail [version 1.0.21] Content-Type: text/plain References: MIME-Version: 1.0 Message-Id: <99090108294601.00334@fdho-w5.fdnet.com> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, 31 Aug 1999, Ken Seggerman wrote: > I am running FreeBSD 3.1 on a Pentium 486 machine, and have the user ppp > that came with the release (PPP Version 2.0 - $Date: 1998/12/14 01:15:34) > > It no longer says "User Process PPP. Writen by Toshiaru OHNO." > > I have been using user ppp for some time now, but have only recently > tried to break the habit of doing everthing as root, but still have to su > to use ppp. > > $ ppp > Working in interactive mode > Warning: No available tunnel devices found (Permission denied). > Warning: bundle_Create: No such file or directory Changing system routes, redirecting devices and access to the tunnel device is not allowed by any user but root. I'm curious about an suid root ppp myself but I think it opens glaring and ugly security holes of which I'm not educated about. There is a way to "open" things up using sysctl but upon dynamically modifiying the kernel in this way you open huge gaping holes in security. Maybe someone else could expand or correct me here? Tony To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message