Craig Sanders <[EMAIL PROTECTED]> writes: > The whole point of the wrapper script is to prevent users from being able > to give any options to pppd (which is where the potential vulnerability > lies).
Hmm, I wasn't thinking about the fact that the options were a big deal (but of course they are when you have something like "connect"). I was mostly just trying to encourage people to avoid a suid pppd. > call this script '/usr/local/bin/user-pppd', and then enable sudo/super > access to this script instead of /usr/sbin/pppd. This is a much better idea. -- Rob -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
