Date: Wed, 7 Jul 1999 12:20:35 +0200 From: Ladavac Marino <mladavac@metropolitan.at> To: 'Josef Karthauser' <joe@pavilion.net>, Ladavac Marino <mladavac@metropolitan.at> Cc: Brian Somers <brian@Awfulhak.org>, Mark Thomas <thomas@clark.net>, freebsd-current@FreeBSD.org, Wayne Self <wself@cdrom.com> Subject: RE: userland ppp - startup Message-ID: <55586E7391ACD211B9730000C11002761796DA@r-lmh-wi-100.corpnet.at>
next in thread | raw e-mail | index | archive | help
> -----Original Message----- > From: Josef Karthauser [SMTP:joe@pavilion.net] > Sent: Wednesday, July 07, 1999 11:53 AM > To: Ladavac Marino > Cc: Brian Somers; Mark Thomas; freebsd-current@FreeBSD.org; Wayne > Self > Subject: Re: userland ppp - startup > > On Wed, Jul 07, 1999 at 11:46:27AM +0200, Ladavac Marino wrote: > > > > > Something like this should do it. It may be nice to also allow > the > > > authname/authkey to be specified on the command line so that they > > > can easily be set in rc.conf, by hand or by sysinstall. > > > > > [ML] You do not really want these on the command line for > > everyone to see with ps. (nor in rc.conf for everyone to see with > e.g. > > cat) > > Hmm... how to do this then? The sppp setup code in rc.* allows > username/password > to be specified. Can it be done in the environment then? (If rc.conf > is visable > then the sppp config gives usernames and passwords away as it stands > today.) [ML] Don't know about sppp, but the only halfway secure way to keep this sensitive data is in a file readable by root, and having the program which needs it setuid root. Sounds a lot like /etc/ppp/ppp.conf, doesn't it? The secure way would be not keeping the info at all :) /Marino > Joe > -- > Josef Karthauser FreeBSD: How many times have you booted today? > Technical Manager Viagra for your server > (http://www.uk.freebsd.org) > Pavilion Internet plc. [joe@pavilion.net, joe@uk.freebsd.org, > joe@tao.org.uk] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?55586E7391ACD211B9730000C11002761796DA>