![](https://seccdn.libravatar.org/avatar/8e7572bcea36ebacd145ad63fbfe42a6.jpg?s=120&d=mm&r=g)
Hi there,
I have a problem with pppd after upgraded to SuSE Version 8.1 from 8.0:
First I can no longer run pppd as a normal user:
michael@tamboti:~> /usr/sbin/pppd call peer
/usr/sbin/pppd: must be root to run /usr/sbin/pppd, since it is not
setuid-root
michael@tamboti:~> la /usr/sbin/pppd
-rwxr-xr-x 1 root dialout 211992 2002-09-09 22:32 /usr/sbin/pppd
michael@tamboti:~>
Is it ok to set the uid-root or is there a further impact, besides security?
Is there a better way to start my chat script?
Second and worse. After I have established the connection as root I can not
Ping the remote machine. The ping is sent and does never come back. What has
happened?
After that connection failed the connection to my ISP does not work correctly,
is it possible that pppd writes somewhere something like a status file. I
found in /var/run/pppd.tdb but I couldn't find out what its use is, and if it
could cause a problem if it is not deleted after the connection is down.
Here is what I get as output when the manual connetion to my remote machine is
up. Maybe someone can see why I can not telnet, ssh or ping it though the
connection is there?
Thanks a lot for any hint
Michael
tamboti:~ # pppd call peer
Perms of /dev/ttyS1 are ok, no 'mesg n' neccesary.
Serial connection established.
using channel 4
Using interface ppp0
Connect: ppp0 <--> /dev/ttyS1
rcvd [LCP ConfReq id=0x1
![](https://seccdn.libravatar.org/avatar/27baa448681c4a5c26d14d8f44fbe635.jpg?s=120&d=mm&r=g)
On Tue, 8 Oct 2002 21:13:48 +0200 MichaelHoeller@t-online.de (Michael Höller) wrote:
I have a problem with pppd after upgraded to SuSE Version 8.1 from 8.0: First I can no longer run pppd as a normal user:
michael@tamboti:~> /usr/sbin/pppd call peer /usr/sbin/pppd: must be root to run /usr/sbin/pppd, since it is not setuid-root
Yeah, you need to make /usr/sbin/pppd suid. You could get a little better security by making it sgid since everyone is supposed to be in group dialout to use it. Also once you change it, make sure you change the settings for it in /etc/permissions and /etc/permissions/local. Otherwise, everytime SuSEConfig runs, it will reset it to non-suid.
Second and worse. After I have established the connection as root I can not Ping the remote machine. The ping is sent and does never come back. What has happened?
After that connection failed the connection to my ISP does not work correctly, is it possible that pppd writes somewhere something like a status file. I found in /var/run/pppd.tdb but I couldn't find out what its use is, and if it could cause a problem if it is not deleted after the connection is down.
Here is what I get as output when the manual connetion to my remote machine is up. Maybe someone can see why I can not telnet, ssh or ping it though the connection is there?
That sounds like a firewall2 problem. I just went thru it. When you run pppd, it starts the ip-up script which attempts to setup the firewall on ppp0. It blocks all routing while it tries to start, so you get and send nothing. The firewall2 startup script looks for information in /etc/sysconfig/network and if it isn't setup right, it fails, and your connection has no firewall. You need to use yast2, and setup the modem, making sure you enter all the info for provider. I found that too cumbersome for my simple setup, so I went and installed an older version of firewall2 from suse7.4. It works fine, not doing all the "provider checking". The older scripts use the rc.config files so they have to be manually installed into 8.1, but it was a quick and painless way out for me. :-) You could just try to install the firewall2 scripts from 8.0 if they work, or you can do the modem setup properly in yast2. Sounds complicated, but I hope I gave you a clue. Try this to test my hypothesis. Stop the firewall2 before you dial out. Also rename /etc/ppp/ip-up so it won't run. Then dialout. I bet your ppp works fine. Then try and manually start firewall2. Your ppp will stop working while the firewall tries to start, it will die after about a minute, saying something about /networks/host. Then after it dies, your ppp will work again, but without firewall protection. That was my experience. Good luck. -- use Perl; #powerful programmable prestidigitation
participants (2)
-
MichaelHoeller@t-online.de
-
zentara