Ernst Kloppenburg writes: > Package: kppp Version: 4:3.1.5-1 Severity: normal Followup-For: Bug > #126406
> as the original bug reporter says, /usr/share/doc/kppp/README.Debian > gives the very questionable advice to set "noauth" in > /etc/ppp/options Are you sure that you know what this option does ? It does not mean that all users are allowed to change ppp settings. It means that the ppp client does not try to check the authentication of the ppp server of your ISP. Quite a lot of ISPs have broken authentication configs on their servers, because windows clients never check them anyway. > I found a different solution to make kppp work: add the following to > /usr/share/doc/kppp/README.Debian > privgroup dip > And put the people in dip that should be able to use kppp. > w.r.t. to security this is better, but not optimal, of course Since noone is allowed to execute kppp unless they're in the dip group, this would be pretty pointless, no ? If you read /usr/share/doc/kppp/README.Debian again, you'll see that the dip group and its meaning is already explained there. cheers domi