Home | Content | Search | Navigation | Indexes
 

Mailinglist Archive: opensuse (169 mails)

< Previous Next >
Re: [SuSE Linux] 2 issues
  • From: jlkreps@xxxxxxxxx (Jerry Lynn Kreps)
  • Date: Sun, 02 May 1999 20:16:31 -0500
  • Message-id: <372CF8EF.34E31AC4@xxxxxxxxx>



Josh Rodman wrote:
>
> * Jerry Lynn Kreps (jlkreps@xxxxxxxxx) [990428 20:57]:
> > landie wrote:
> > >
> > > first when I dial via kppp to ISP I get
> > > daemon died unexpectedly, I tried their solution on commenting out the
> > > lock line in /etc/PPP/options but still no luck.
>
> Are you still getting this specific error message after commenting this
> line? Are you certain it is so commented? Are you getting different
> symptoms now?
>
> > > any ideas what else it could be when I dial via minicom I have no problem.
>
> To diagnose this, more information is needed. Open up an xterm. 'su' to
> root. run the command 'tail -f /var/log/messages'. Try to use kppp. You
> should get all kinds of useful output in the xterm window. Post this
> here.
>
> > as root do a "chmod a+s /usr/sbin/pppd
>
> Please do _NOT_ do this. pppd is arleady suid root. Any user in the
> 'dialout' group should be able to run it. Any user who can run kppp can

The 's' attribute doesn't appear in the permissions settings until I
suid it, so how can you tell it is already suid root... because dialout
is supposed to be?

> also run it. The chmod commad above simply will make the command 'set
> groupid' and 'sticky'. This confers no advatages and could concievably
> make trouble for you in the future.

My /usr/sbin/pppd is root:dialout. pppd would only work properly when I
'chmod a+s pppd'.
Every time a ran YaST it took the suid off and Kppp wouldn't work until
I put it on again.

>
> > Edit /etc/permissions and change the permission on pppd to 7555 so YaST
> > doesn't change it every time YaST runs.

This certainly prevents YaST from taking the suid off of pppd so I don't
have to manual reset it every time I run YaST.

So, since you think these two items are problems, why do you suppose
that as a user I can't get pppd to be fired by Kppp unless I suid it?

>
> Again, do not do this. This will give any and all users on your system
> access to a setuid program. If you don't care about security at all, you
> could give everyone the root password and not worry about permissions, but
> otherwise I don't recommend this.

> Best of luck,
>
> -josh


--

JLK
Linux, because it's STABLE, the source code is included, the price is
right.
--
To get out of this list, please send email to majordomo@xxxxxxxx with
this text in its body: unsubscribe suse-linux-e
Check out the SuSE-FAQ at <A HREF="http://www.suse.com/Support/Doku/FAQ/";><A HREF="http://www.suse.com/Support/Doku/FAQ/</A">http://www.suse.com/Support/Doku/FAQ/</A</A>> and the
archive at <A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html";><A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html</A">http://www.suse.com/Mailinglists/suse-linux-e/index.html</A</A>>


< Previous Next >
References