Date: Sun, 21 Dec 1997 20:06:28 +0000 From: Brian Somers <brian@awfulhak.org> To: "Joe \"Marcus\" Clarke" <jmcla@ocala.cs.miami.edu> Cc: FreeBSD User Questions List <freebsd-questions@freebsd.org>, brian@awfulhak.org Subject: Re: server socket for ppp Message-ID: <199712212006.UAA23265@awfulhak.demon.co.uk> In-Reply-To: Your message of "Sun, 21 Dec 1997 13:54:48 EST." <Pine.SGI.3.96.971221135031.4588A-100000@ocala.cs.miami.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
> I'm not sure if this is necessarily a bug, or if I'm doing something
> wrong. But in the man page for pppctl, it says a good way to secure
> user ppp is to set the diagnostic server to be a local socket. It also
> says to give it the mask 0177. This should create a server socket with
> the protection srw-------. However, no matter what mode I tell ppp to
> use, it creates a socket with the protection srwxrwxrwx. Currently my
> set server line looks like:
>
> set server /var/run/internet "" 0600
>
> Am I missing something?
This is strange - it works fine for me, although bear in mind, it's a
mask, so 0600 should create permissions 0177 (s--xrwxrwx). What
version of FreeBSD are you using ? Is there maybe a typo in your
`set server' line (a `O' (oh) instead of a `0' (zero)) maybe ?
> Joe Clarke
>
> P.S. Thanks for the ifilters, Brian, they work great.
Good to hear.
--
Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
<http://www.Awfulhak.org>;
Don't _EVER_ lose your sense of humour....
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199712212006.UAA23265>