Re: PPP as normal user
Britton writes: > I have problems starting ppp as a normal user also that I have not been > able to cure by mucking with permissiont in /etc and elsewhere. Put your users in the 'dip' group and set the permissions and ownership of /etc/chatscripts thusly: drwx--x--- root dip /etc/chatscripts/ The other ppp files are correct as installed. -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI
Re: PPP as normal user
I have problems starting ppp as a normal user also that I have not been able to cure by mucking with permissiont in /etc and elsewhere. Mind firing off a quick ls -l /etc/ppp*? I'd really appreciate it. __ GNU GPL: "The Source will be with you... always." Britton Kerin On 27 Aug 1998, Martin Bialasinski wrote: > > >> "s" == servis <[EMAIL PROTECTED]> writes: > > s> | /etc/chatscripts/provider: > s> | -rw-r- 1 root dip 512 Aug 14 22:29 provider > s> > s> BINGO! I found that the group read bit was not on on this file. > s> Changed that and I am a happy camper now. In fact I just dialed in to > s> send this mail using my user account. > > But this is strange. pppd is setuid root. So it should be able to > read any file, right? > > Ciao, > Martin > > > -- > Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] < /dev/null > >
Re: PPP as normal user
Martin Bialasinski writes: > gtop shows root as owner and still I can signal it. You are still the real user. -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI
Re: PPP as normal user
Martin writes:
> But this is strange. pppd is setuid root. So it should be able to
> read any file, right?
/etc/chatscripts/provider is read by chat, not pppd. pppd forks and exec's
chat via these lines:
setuid(getuid());
setgid(getgid());
execl("/bin/sh", "sh", "-c", program, (char *)0);
Thus chat gets run with the uid of the user, not root. More security.
Remember that the 'connect' command can be given on the command line.
Without the above precautions, I could run 'pppd connect get_root' and have
the 'get_root' script run setuid root.
--
John Hasler
[EMAIL PROTECTED] (John Hasler)
Dancing Horse Hill
Elmwood, WI
Re: PPP as normal user
>> "s" == servis <[EMAIL PROTECTED]> writes: s> poff is just a shell script that will call the kill command. I haven't s> tried killing pppd from servis since this has worked. It will take me s> about an hour to get through the busy lines. Will this be able to kill s> the root process? s> % ls -l /usr/bin/poff s> 2 -rwxr-xr-x 1 root dip 1511 Jun 18 19:58 /usr/bin/poff* I have to admit this setuid stuff puzzeled me. gtop shows root as owner and still I can signal it. In /proc, it shows Uid:10000 0 0 Gid:1000100010001000 (uid 1000 = martin) But I know too little about this to comment on it. Someone else? Ciao, Martin
Re: PPP as normal user
Brian writes: > From what I understand from the man pages, doc's etc. I can have all my > options in the /etc/ppp/peers/provider options file, no problem. The options file can be empty, but it must exist if any user other than root is to use pppd. > Figures it would be something small like that. It would be nice if there > was a script in the ppp package to check for these kind of permission > problems. That is a known bug in the ppp package. I may eventually have pppconfig check this sort of stuff. -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI
Re: PPP as normal user
*- Martin Bialasinski wrote about "Re: PPP as normal user" | | >> "s" == servis <[EMAIL PROTECTED]> writes: | | s> | /etc/chatscripts/provider: | s> | -rw-r- 1 root dip 512 Aug 14 22:29 provider | s> | s> BINGO! I found that the group read bit was not on on this file. | s> Changed that and I am a happy camper now. In fact I just dialed in to | s> send this mail using my user account. | | But this is strange. pppd is setuid root. So it should be able to | read any file, right? | I would think, does group permissions preval in such a case? I could never keep all this straight, as I have never read a definitive source on file permissions(my fault I guess). As a review this is the chain of files getting called on my system by user servis to start the ppp connection using pon. % ls -l /usr/bin/pon 1 -rwxr-xr-x 1 root dip45 Jun 18 19:58 /usr/bin/pon* % ls -l /usr/sbin/pppd 105 -rwsr-xr-- 1 root dip105532 Jun 18 19:59 /usr/sbin/pppd* Should the process be root id, dip id, or servis id? % ls -dl /etc/ppp 1 drwxr-xr-x 6 root dip 1024 Aug 26 15:31 /etc/ppp/ % ls -dl /etc/ppp/peers 1 drwxr-xr-x 2 root dip 1024 Jul 27 20:05 /etc/ppp/peers/ % ls -l /etc/ppp/peers/provider 1 -rw-r- 1 root dip 671 Jul 27 20:05 /etc/ppp/peers/provider % ls -dl /etc/chatscripts 1 drwxr-x--- 2 root dip 1024 Jul 9 20:50 /etc/chatscripts/ I had to change the following to g+r for it to work, this indicates that it was running as dip id. % ls -l /etc/chatscripts/provider 1 -rwxr- 1 root dip 170 Jul 9 20:50 /etc/chatscripts/provider* But this writes it as group servis. % ls -l /var/run/ppp0.pid 1 -rw-r--r-- 1 root servis 5 Aug 27 10:18 /var/run/ppp0.pid and is running as root % ps auw | grep pppd | grep -v grep root 5338 0.0 0.5 1140 524 S3 S10:16 0:00 /usr/sbin/pppd call provider poff is just a shell script that will call the kill command. I haven't tried killing pppd from servis since this has worked. It will take me about an hour to get through the busy lines. Will this be able to kill the root process? % ls -l /usr/bin/poff 2 -rwxr-xr-x 1 root dip 1511 Jun 18 19:58 /usr/bin/poff* Am I way off base? It seems to work, but it isn't super clear to me why. -- Brian - "Never criticize anybody until you have walked a mile in their shoes, because by that time you will be a mile away and have their shoes." - unknown Mechanical Engineering [EMAIL PROTECTED] Purdue University http://www.ecn.purdue.edu/~servis -
Re: PPP as normal user
Brian writes: > If I issue 'pppd file /etc/ppp/peers/provider' then it seg faults! Doesn't for me. Note, however, that 'pppd file /etc/ppp/peers/provider' is *not* the same as 'pppd call provider'. The latter will accept privileged options in provider. With my options file removed, ''pppd call provider' works fine for root but not for an ordinary user. A check of the source shows that this is the intended behavior. The purpose is security: the sysadmin may have put privileged options such as 'auth' in the options file and would not want a user to be able to evade them. -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI
Re: PPP as normal user
>> "s" == servis <[EMAIL PROTECTED]> writes: s> | /etc/chatscripts/provider: s> | -rw-r- 1 root dip 512 Aug 14 22:29 provider s> s> BINGO! I found that the group read bit was not on on this file. s> Changed that and I am a happy camper now. In fact I just dialed in to s> send this mail using my user account. But this is strange. pppd is setuid root. So it should be able to read any file, right? Ciao, Martin
Re: PPP as normal user
*- Ed Cogburn wrote about "Re: PPP as normal user" | | For one thing, I'm uneasy at the fact that you don't have an options | file in /etc/ppp. Going by the messages in that file, having that file | should be standard for Debian setups. Changes to the default in the | options file would go in the /peers/provider file. >From what I understand from the man pages, doc's etc. I can have all my options in the /etc/ppp/peers/provider options file, no problem. | I've had pppd hang as its doing to you. I narrowed my problem to the | file permissions of /etc/chatscripts/provider (there are 2 'provider' | files). | | /etc/chatscripts dir: | drwxr-x--- 2 root dip 1024 Jun 22 13:34 chatscripts | | /etc/chatscripts/provider: | -rw-r- 1 root dip 512 Aug 14 22:29 provider BINGO! I found that the group read bit was not on on this file. Changed that and I am a happy camper now. In fact I just dialed in to send this mail using my user account. Figures it would be something small like that. It would be nice if there was a script in the ppp package to check for these kind of permission problems. Thanks all, -- Brian - "Never criticize anybody until you have walked a mile in their shoes, because by that time you will be a mile away and have their shoes." - unknown Mechanical Engineering [EMAIL PROTECTED] Purdue University http://www.ecn.purdue.edu/~servis -
Re: PPP as normal user
*- [EMAIL PROTECTED] wrote about "Re: PPP as normal user" | Brian writes: | > This setup, with no /etc/ppp/options file and only | > /etc/ppp/peers/provider, has worked for months when pon(pppd) is called | > from root. | | But why don't you have an options file? Because all the options are in /etc/ppp/peers/provider as per the man page usage when using the 'call' option. -- Brian - "Never criticize anybody until you have walked a mile in their shoes, because by that time you will be a mile away and have their shoes." - unknown Mechanical Engineering [EMAIL PROTECTED] Purdue University http://www.ecn.purdue.edu/~servis -
Re: PPP as normal user
[EMAIL PROTECTED] wrote:
>
> *- Martin Bialasinski wrote about "Re: PPP as normal user"
> |
> | >> "s" == servis <[EMAIL PROTECTED]> writes:
> |
> | [...]
> |
> | You forgot to answer my question :-)
> |
> | What happens if you just type /usr/sbin/pppd at the prompt (as user
> | servis)? Will it run or issue an error message?
> |
> | When I do this, pppd starts and begins sending LCP packages.
> |
> | Aug 26 22:43:45 haitech kernel: PPP: version 2.2.0 (dynamic channel
> allocation)
> | Aug 26 22:43:45 haitech kernel: PPP Dynamic channel allocation code
> copyright 1995 Caldera, Inc.
> | Aug 26 22:43:45 haitech kernel: PPP line discipline registered.
> | Aug 26 22:43:45 haitech kernel: registered device ppp0
> | Aug 26 22:43:46 haitech pppd[707]: pppd 2.3.5 started by martinb, uid 1000
> | Aug 26 22:43:46 haitech pppd[707]: Using interface ppp0
> | Aug 26 22:43:46 haitech pppd[707]: Connect: ppp0 <--> /dev/ttyp1
> | Aug 26 22:43:46 haitech pppd[707]: sent [LCP ConfReq id=0x1
> ]
> | Aug 26 22:44:13 haitech last message repeated 9 times
> | Aug 26 22:44:16 haitech pppd[707]: LCP: timeout sending Config-Requests
> | Aug 26 22:44:16 haitech pppd[707]: Connection terminated.
> | Aug 26 22:44:17 haitech pppd[707]: Exit.
> |
> | How about you?
> |
>
> Sorry.
>
> Issuing pppd at servis' prompt without any options send LCP packets
> to the tty and the following in the log.
>
> Aug 26 16:30:33 brian pppd[3840]: pppd 2.3.5 started by servis, uid 6262
> Aug 26 16:30:33 brian pppd[3840]: Using interface ppp0
> Aug 26 16:30:33 brian pppd[3840]: Connect: ppp0 <--> /dev/ttyp0
> Aug 26 16:31:03 brian pppd[3840]: LCP: timeout sending Config-Requests
> Aug 26 16:31:03 brian pppd[3840]: Connection terminated.
> Aug 26 16:31:04 brian pppd[3840]: Exit.
>
> If I issue 'pppd call provider' at servis' prompt I get the prompt back
> immediately and in the log I only get:
>
> Aug 26 19:03:16 brian pppd[3872]: pppd 2.3.5 started by servis, uid 6262
>
> It never exits however. It has probably detached from the tty but no
> logs show any activity. I have to explicitly kill the pid.
>
> If I issue 'pppd file /etc/ppp/peers/provider' then it seg faults!
>
> % pppd file /etc/ppp/peers/provider
> Segmentation fault
>
> But a strace on the above won't even run!
>
> % strace -f /usr/sbin/pppd file /etc/ppp/peers/provider
> execve("/usr/sbin/pppd", ["/usr/sbin/pppd", "file",
> "/etc/ppp/peers/provider"], [/* 35 vars */]) = 0
> strace: exec: Operation not permitted
>
> I am about ready to give up!
>
> Thanks for all your help,
> --
> Brian
For one thing, I'm uneasy at the fact that you don't have an options
file in /etc/ppp. Going by the messages in that file, having that file
should be standard for Debian setups. Changes to the default in the
options file would go in the /peers/provider file.
I've had pppd hang as its doing to you. I narrowed my problem to the
file permissions of /etc/chatscripts/provider (there are 2 'provider'
files).
/etc/chatscripts dir:
drwxr-x--- 2 root dip 1024 Jun 22 13:34 chatscripts
/etc/chatscripts/provider:
-rw-r- 1 root dip 512 Aug 14 22:29 provider
--
Ed C.
Re: PPP as normal user
Brian writes: > This setup, with no /etc/ppp/options file and only > /etc/ppp/peers/provider, has worked for months when pon(pppd) is called > from root. But why don't you have an options file? -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI
Re: PPP as normal user
*- Martin Bialasinski wrote about "Re: PPP as normal user"
|
| >> "s" == servis <[EMAIL PROTECTED]> writes:
|
| [...]
|
| You forgot to answer my question :-)
|
| What happens if you just type /usr/sbin/pppd at the prompt (as user
| servis)? Will it run or issue an error message?
|
| When I do this, pppd starts and begins sending LCP packages.
|
| Aug 26 22:43:45 haitech kernel: PPP: version 2.2.0 (dynamic channel
allocation)
| Aug 26 22:43:45 haitech kernel: PPP Dynamic channel allocation code copyright
1995 Caldera, Inc.
| Aug 26 22:43:45 haitech kernel: PPP line discipline registered.
| Aug 26 22:43:45 haitech kernel: registered device ppp0
| Aug 26 22:43:46 haitech pppd[707]: pppd 2.3.5 started by martinb, uid 1000
| Aug 26 22:43:46 haitech pppd[707]: Using interface ppp0
| Aug 26 22:43:46 haitech pppd[707]: Connect: ppp0 <--> /dev/ttyp1
| Aug 26 22:43:46 haitech pppd[707]: sent [LCP ConfReq id=0x1
]
| Aug 26 22:44:13 haitech last message repeated 9 times
| Aug 26 22:44:16 haitech pppd[707]: LCP: timeout sending Config-Requests
| Aug 26 22:44:16 haitech pppd[707]: Connection terminated.
| Aug 26 22:44:17 haitech pppd[707]: Exit.
|
| How about you?
|
Sorry.
Issuing pppd at servis' prompt without any options send LCP packets
to the tty and the following in the log.
Aug 26 16:30:33 brian pppd[3840]: pppd 2.3.5 started by servis, uid 6262
Aug 26 16:30:33 brian pppd[3840]: Using interface ppp0
Aug 26 16:30:33 brian pppd[3840]: Connect: ppp0 <--> /dev/ttyp0
Aug 26 16:31:03 brian pppd[3840]: LCP: timeout sending Config-Requests
Aug 26 16:31:03 brian pppd[3840]: Connection terminated.
Aug 26 16:31:04 brian pppd[3840]: Exit.
If I issue 'pppd call provider' at servis' prompt I get the prompt back
immediately and in the log I only get:
Aug 26 19:03:16 brian pppd[3872]: pppd 2.3.5 started by servis, uid 6262
It never exits however. It has probably detached from the tty but no
logs show any activity. I have to explicitly kill the pid.
If I issue 'pppd file /etc/ppp/peers/provider' then it seg faults!
% pppd file /etc/ppp/peers/provider
Segmentation fault
But a strace on the above won't even run!
% strace -f /usr/sbin/pppd file /etc/ppp/peers/provider
execve("/usr/sbin/pppd", ["/usr/sbin/pppd", "file", "/etc/ppp/peers/provider"],
[/* 35 vars */]) = 0
strace: exec: Operation not permitted
I am about ready to give up!
Thanks for all your help,
--
Brian
-
"Never criticize anybody until you have walked a mile in their shoes,
because by that time you will be a mile away and have their shoes."
- unknown
Mechanical Engineering [EMAIL PROTECTED]
Purdue University http://www.ecn.purdue.edu/~servis
-
Re: PPP as normal user
*- [EMAIL PROTECTED] wrote about "Re: PPP as normal user" | Brian writes: | > Am I interpreting this wrong? | | No, but your provider file does not include everything needed to make a | dialup connection: some stuff is assumed to be in the options file. | | I still would like to know what became of your options file, though. Could | it have been destroyed by wmpp? | | I'll look into this smoe more this evening and get back to you. Right now | I have to go stack hay. This setup, with no /etc/ppp/options file and only /etc/ppp/peers/provider, has worked for months when pon(pppd) is called from root. I just wanted to let my user account call pon and things went south. This has nothing to do with wmpp, it was like this before I tried using wmppp to call pon/poff. -- Brian - "Never criticize anybody until you have walked a mile in their shoes, because by that time you will be a mile away and have their shoes." - unknown Mechanical Engineering [EMAIL PROTECTED] Purdue University http://www.ecn.purdue.edu/~servis -
Re: PPP as normal user
Brian writes: > Am I interpreting this wrong? No, but your provider file does not include everything needed to make a dialup connection: some stuff is assumed to be in the options file. I still would like to know what became of your options file, though. Could it have been destroyed by wmpp? I'll look into this smoe more this evening and get back to you. Right now I have to go stack hay. -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI
Re: PPP as normal user
>> "s" == servis <[EMAIL PROTECTED]> writes: [...] You forgot to answer my question :-) What happens if you just type /usr/sbin/pppd at the prompt (as user servis)? Will it run or issue an error message? When I do this, pppd starts and begins sending LCP packages. Aug 26 22:43:45 haitech kernel: PPP: version 2.2.0 (dynamic channel allocation) Aug 26 22:43:45 haitech kernel: PPP Dynamic channel allocation code copyright 1995 Caldera, Inc. Aug 26 22:43:45 haitech kernel: PPP line discipline registered. Aug 26 22:43:45 haitech kernel: registered device ppp0 Aug 26 22:43:46 haitech pppd[707]: pppd 2.3.5 started by martinb, uid 1000 Aug 26 22:43:46 haitech pppd[707]: Using interface ppp0 Aug 26 22:43:46 haitech pppd[707]: Connect: ppp0 <--> /dev/ttyp1 Aug 26 22:43:46 haitech pppd[707]: sent [LCP ConfReq id=0x1 ] Aug 26 22:44:13 haitech last message repeated 9 times Aug 26 22:44:16 haitech pppd[707]: LCP: timeout sending Config-Requests Aug 26 22:44:16 haitech pppd[707]: Connection terminated. Aug 26 22:44:17 haitech pppd[707]: Exit. How about you? Ciao, Martin
Re: PPP as normal user
*- [EMAIL PROTECTED] wrote about "Re: PPP as normal user" | Brian writes: | > This fix doesn't seem like the right way to fix this problem.] | | The right way is to figure out what happened to your options file and then | purge and reinstall ppp. | | > Why would running it as root NOT fail when the options file is not | > present and when run as a user it needs to have the options file present. | | Some pppd options are privileged and may only be given in certain files (or | not at all) when the user is not root. Root, on the other hand, can give | all options on the command line. Therefor it isn't too surprising that | root can run pppd with no options file. The pon script without any options calls pppd as /usr/sbin/pppd call provider. >From the pppd man page ... call name Read options from the file /etc/ppp/peers/name. This file may contain privileged options, such as noauth, even if pppd is not being run by root. The name string may not begin with / or include .. as a pathname component. The format of the options file is described below. ... The normal way that pppd should be set up is to have the auth option in the /etc/ppp/options file. (This may become the default in later releases.) If users wish to use pppd to dial out to a peer which will refuse to authenticate itself (such as an internet service provider), the system administrator should create an options file under /etc/ppp/peers containing the noauth option, the name of the serial port to use, and the connect option (if required), plus any other appropriate options. In this way, pppd can be set up to allow non- privileged users to make unauthenticated connections only to trusted peers. As indicated above, some security-sensitive options are privileged, which means that they may not be used by an ordinary non-privileged user running a setuid-root pppd, either on the command line, in the user's ~/.ppprc file, or in an options file read using the file option. PriviĀ leged options may be used in /etc/ppp/options file or in an options file read using the call option. If pppd is being run by the root user, privileged options can be used without restriction. So there does not need to be an /etc/ppp/options file. However in an effort to try and get this going I created an /etc/ppp/options file with the single line of auth in it. This did not change the results. My /etc/ppp/peers/provider file is(stripped of comments from pppconfig): noauth connect "/usr/sbin/chat -v -f /etc/chatscripts/provider -r /var/log/chat-report.log" debug /dev/ttyS3 115200 defaultroute noipdefault user servis persist lock holdoff 1 Am I interpreting this wrong? Thanks, Brian - "Never criticize anybody until you have walked a mile in their shoes, because by that time you will be a mile away and have their shoes." - unknown Mechanical Engineering [EMAIL PROTECTED] Purdue University http://www.ecn.purdue.edu/~servis -
Re: PPP as normal user
Brian writes: > This fix doesn't seem like the right way to fix this problem.] The right way is to figure out what happened to your options file and then purge and reinstall ppp. > Why would running it as root NOT fail when the options file is not > present and when run as a user it needs to have the options file present. Some pppd options are privileged and may only be given in certain files (or not at all) when the user is not root. Root, on the other hand, can give all options on the command line. Therefor it isn't too surprising that root can run pppd with no options file. -- John HaslerThis posting is in the public domain. [EMAIL PROTECTED] Do with it what you will. Dancing Horse Hill Make money from it if you can; I don't mind. Elmwood, Wisconsin Do not send email advertisements to this address.
Re: PPP as normal user
*- Martin Bialasinski wrote about "Re: PPP as normal user" | | (try this please) | | Maybe you did the "adduser name dip" during the current session? Then | you should login again. | | (and try /usr/sbin/pppd again. Different output/logs ?) My user account has been a member of the dip group for a while. This morning I made a new 2.0.35 kernel and did a reboot so I am all fresh logins. The errors, etc. I posted were after the reboot. So this is not the problem. The reason I am trying to get this to work is that I am using wmppp to watch my modem and I would like to assign the two buttons it has for staring and stopping ppp to pon and poff. -- Brian - "Never criticize anybody until you have walked a mile in their shoes, because by that time you will be a mile away and have their shoes." - unknown Mechanical Engineering [EMAIL PROTECTED] Purdue University http://www.ecn.purdue.edu/~servis -
Re: PPP as normal user
>> "s" == servis <[EMAIL PROTECTED]> writes:
s> | Strange it works as root. As you can see, you don't have a
s> | /etc/ppp/options file. Create one and try again.
s> This fix doesn't seem like the right way to fix this problem. Why
s> would running it as root NOT fail when the options file is not present
s> and when run as a user it needs to have the options file present.
Don't know. This *is* strange, just as I said.
s> Well, now the error message goes away but it just exits without doing
s> anything, assuming because the options file is empty.
No. The options file may be empty.
s> A strace shows that it is trying to execute '/usr/sbin/pppd call
s> provider', which is what /usr/bin/pon does, but it fails.
s> [pid 1219] execve("/usr/sbin/pppd", ["/usr/sbin/pppd", "call", "provider"],
[/* 36 vars */]) = -1 EPERM (Operation not permitted)
s> If I explicitly type in '/usr/sbin/pppd call provider' the log shows an
s> entry of
s> 'Aug 26 08:57:36 brian pppd[1221]: pppd 2.3.5 started by servis, uid 6262'
s> but no error message is returned and nothing happens.
Now I am *really* confused. In another mail you said:
% id
uid=6262(servis) gid=6262(servis)
groups=6262(servis),20(dialout),29(audio),30(dip)
% ls -l /usr/sbin/pppd
105 -rwsr-xr-- 1 root dip105532 Jun 18 19:59 /usr/sbin/pppd*
This is OK.
If permissions are wrong, you should get a
$ /usr/sbin/pppd
su: /usr/sbin/pppd: Permission denied
(try this please)
Maybe you did the "adduser name dip" during the current session? Then
you should login again.
(and try /usr/sbin/pppd again. Different output/logs ?)
Ciao,
Martin
--
from a 1996 Microshit ad campaign:
"The less you know about computers the more you want Micro$oft!"
See! They do get some things right!
Re: PPP as normal user
On Wed, Aug 26, 1998 at 08:08:03AM -0500, [EMAIL PROTECTED] wrote: > *- Rafael Cordones Marcos wrote about "Re: PPP as normal user" > | On Wed, Aug 26, 1998 at 01:57:08AM -0500, David Densmore wrote: > | > I just installed Debian 2.0. > | > > | > Can someone tell me how to establish a PPP connection from my normal > | > user account? I have no problem as root. [...] Many directory listing ommitted. > % pon > /usr/sbin/pppd: Can't open options file /etc/ppp/options: No such file or > directory > > As root it works perfectly. What am I missing? You could use sudo to run pon/poff and other programs that work perfectly as root. Installing and using sudo seems a lot easier than messing with all these file permissions. -- [EMAIL PROTECTED] Jack Kern Yarmouth, Nova Scotia Debian GNU/Linux
Re: PPP as normal user
*- Martin Bialasinski wrote about "Re: PPP as normal user"
|
| >> "s" == servis <[EMAIL PROTECTED]> writes:
|
| s> % ls -al /etc/ppp
| s> total 92
| s> 1 drwxr-xr-x 6 root dip 1024 Jul 26 14:48 ./
| s> 7 drwxr-xr-x 64 root root 7168 Aug 26 06:49 ../
| s> 36 -rw-r--r-- 1 root root34938 Jul 9 10:58 connect-errors
| s> 2 -rwxr--r-- 1 root root 1338 May 31 14:08 ip-down*
| s> 1 drwxr-xr-x 2 root root 1024 May 13 21:42 ip-down.d/
| s> 2 -rwxr--r-- 1 root root 1454 May 13 21:42 ip-down.dpkg-dist*
| s> 32 -rw-r--r-- 1 root root31249 Aug 26 07:51 ip-log
| s> 3 -rwxr--r-- 1 root root 2789 Jul 26 14:48 ip-up*
| s> 1 drwxr-xr-x 2 root root 1024 Aug 11 08:46 ip-up.d/
| s> 2 -rwxr--r-- 1 root root 1452 May 13 21:42 ip-up.dpkg-dist*
| s> 2 -rw--- 1 root root 1553 Jul 9 12:58 pap-secrets
| s> 1 drwxr-xr-x 2 root dip 1024 Jul 27 20:05 peers/
| s> 1 -rw-r--r-- 1 root root 85 Mar 1 1997 ppp_on_boot
|
| s> % pon
| s> /usr/sbin/pppd: Can't open options file /etc/ppp/options: No such file or
directory
|
| s> As root it works perfectly. What am I missing?
|
| Strange it works as root. As you can see, you don't have a
| /etc/ppp/options file. Create one and try again.
|
| cd /etc/ppp/
| touch options
| chmod 644 options
|
This fix doesn't seem like the right way to fix this problem. Why
would running it as root NOT fail when the options file is not present
and when run as a user it needs to have the options file present.
Well, now the error message goes away but it just exits without doing
anything, assuming because the options file is empty. A strace shows
that it is trying to execute '/usr/sbin/pppd call provider', which is
what /usr/bin/pon does, but it fails.
[pid 1219] execve("/usr/sbin/pppd", ["/usr/sbin/pppd", "call", "provider"],
[/* 36 vars */]) = -1 EPERM (Operation not permitted)
If I explicitly type in '/usr/sbin/pppd call provider' the log shows an
entry of
'Aug 26 08:57:36 brian pppd[1221]: pppd 2.3.5 started by servis, uid 6262'
but no error message is returned and nothing happens.
--
Brian
-
"Never criticize anybody until you have walked a mile in their shoes,
because by that time you will be a mile away and have their shoes."
- unknown
Mechanical Engineering [EMAIL PROTECTED]
Purdue University http://www.ecn.purdue.edu/~servis
-
Re: PPP as normal user
>> "s" == servis <[EMAIL PROTECTED]> writes: s> % ls -al /etc/ppp s> total 92 s> 1 drwxr-xr-x 6 root dip 1024 Jul 26 14:48 ./ s> 7 drwxr-xr-x 64 root root 7168 Aug 26 06:49 ../ s> 36 -rw-r--r-- 1 root root34938 Jul 9 10:58 connect-errors s> 2 -rwxr--r-- 1 root root 1338 May 31 14:08 ip-down* s> 1 drwxr-xr-x 2 root root 1024 May 13 21:42 ip-down.d/ s> 2 -rwxr--r-- 1 root root 1454 May 13 21:42 ip-down.dpkg-dist* s> 32 -rw-r--r-- 1 root root31249 Aug 26 07:51 ip-log s> 3 -rwxr--r-- 1 root root 2789 Jul 26 14:48 ip-up* s> 1 drwxr-xr-x 2 root root 1024 Aug 11 08:46 ip-up.d/ s> 2 -rwxr--r-- 1 root root 1452 May 13 21:42 ip-up.dpkg-dist* s> 2 -rw--- 1 root root 1553 Jul 9 12:58 pap-secrets s> 1 drwxr-xr-x 2 root dip 1024 Jul 27 20:05 peers/ s> 1 -rw-r--r-- 1 root root 85 Mar 1 1997 ppp_on_boot s> % pon s> /usr/sbin/pppd: Can't open options file /etc/ppp/options: No such file or directory s> As root it works perfectly. What am I missing? Strange it works as root. As you can see, you don't have a /etc/ppp/options file. Create one and try again. cd /etc/ppp/ touch options chmod 644 options Ciao, Martin
Re: PPP as normal user
*- Rafael Cordones Marcos wrote about "Re: PPP as normal user" | On Wed, Aug 26, 1998 at 01:57:08AM -0500, David Densmore wrote: | > I just installed Debian 2.0. | > | > Can someone tell me how to establish a PPP connection from my normal | > user account? I have no problem as root. | > | > I tried chmod u+s pppd but that doesn't work. | > | | My permissions are: | | lazlo:~$ ll /usr/sbin/ppp* | -rwxr-xr-x 1 root root27309 Jun 12 22:40 /usr/sbin/pppconfig | -rwsr-xr-- 1 root dip105884 Jun 19 02:59 /usr/sbin/pppd | -rwsr-xr-- 1 root dip105532 Jun 19 02:59 /usr/sbin/pppd.ppp-pam | -rwxr-xr-x 1 root root 8688 Jun 19 02:59 /usr/sbin/pppstats | | lazlo:~$ ll /usr/bin/pon | -rwxr-xr-x 1 root dip45 Jun 19 02:58 /usr/bin/pon | -rwxr-xr-x 1 root dip 1511 Jun 19 02:58 /usr/bin/poff | | What I did was (as root): | | 1.- chgrp dip /usr/bin/pon | chgrp dip /usr/bin/poff | | 2.- adduser rafacm dip | | Hope it helps! | I am having the same problems. I can't get my user account(servis) to use pon/poff % id uid=6262(servis) gid=6262(servis) groups=6262(servis),20(dialout),29(audio),30(dip) % ls -l /usr/bin/pon /usr/bin/poff 2 -rwxr-xr-x 1 root dip 1511 Jun 18 19:58 /usr/bin/poff* 1 -rwxr-xr-x 1 root dip45 Jun 18 19:58 /usr/bin/pon* % ls -l /usr/sbin/pppd 105 -rwsr-xr-- 1 root dip105532 Jun 18 19:59 /usr/sbin/pppd* % ls -al /etc/ppp total 92 1 drwxr-xr-x 6 root dip 1024 Jul 26 14:48 ./ 7 drwxr-xr-x 64 root root 7168 Aug 26 06:49 ../ 36 -rw-r--r-- 1 root root34938 Jul 9 10:58 connect-errors 2 -rwxr--r-- 1 root root 1338 May 31 14:08 ip-down* 1 drwxr-xr-x 2 root root 1024 May 13 21:42 ip-down.d/ 2 -rwxr--r-- 1 root root 1454 May 13 21:42 ip-down.dpkg-dist* 32 -rw-r--r-- 1 root root31249 Aug 26 07:51 ip-log 3 -rwxr--r-- 1 root root 2789 Jul 26 14:48 ip-up* 1 drwxr-xr-x 2 root root 1024 Aug 11 08:46 ip-up.d/ 2 -rwxr--r-- 1 root root 1452 May 13 21:42 ip-up.dpkg-dist* 2 -rw--- 1 root root 1553 Jul 9 12:58 pap-secrets 1 drwxr-xr-x 2 root dip 1024 Jul 27 20:05 peers/ 1 -rw-r--r-- 1 root root 85 Mar 1 1997 ppp_on_boot % ls -l /dev/ttyS3 0 crw-r--r-- 1 root dialout4, 67 Aug 26 08:05 /dev/ttyS3 % pon /usr/sbin/pppd: Can't open options file /etc/ppp/options: No such file or directory As root it works perfectly. What am I missing? Thanks, -- Brian - "Never criticize anybody until you have walked a mile in their shoes, because by that time you will be a mile away and have their shoes." - unknown Mechanical Engineering [EMAIL PROTECTED] Purdue University http://www.ecn.purdue.edu/~servis -
Re: PPP as normal user
On Wed, Aug 26, 1998 at 01:57:08AM -0500, David Densmore wrote: > I just installed Debian 2.0. > > Can someone tell me how to establish a PPP connection from my normal > user account? I have no problem as root. > > I tried chmod u+s pppd but that doesn't work. > > Thank You > David Densmore <[EMAIL PROTECTED]> > > > -- > Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] < /dev/null > My permissions are: lazlo:~$ ll /usr/sbin/ppp* -rwxr-xr-x 1 root root27309 Jun 12 22:40 /usr/sbin/pppconfig -rwsr-xr-- 1 root dip105884 Jun 19 02:59 /usr/sbin/pppd -rwsr-xr-- 1 root dip105532 Jun 19 02:59 /usr/sbin/pppd.ppp-pam -rwxr-xr-x 1 root root 8688 Jun 19 02:59 /usr/sbin/pppstats lazlo:~$ ll /usr/bin/pon -rwxr-xr-x 1 root dip45 Jun 19 02:58 /usr/bin/pon -rwxr-xr-x 1 root dip 1511 Jun 19 02:58 /usr/bin/poff What I did was (as root): 1.- chgrp dip /usr/bin/pon chgrp dip /usr/bin/poff 2.- adduser rafacm dip Hope it helps! Rafa
Re: PPP as normal user
>> "DD" == David Densmore <[EMAIL PROTECTED]> writes: DD> I just installed Debian 2.0. DD> Can someone tell me how to establish a PPP connection from my normal DD> user account? I have no problem as root. DD> I tried chmod u+s pppd but that doesn't work. You have to add the user to the dip (or was it dialout? better to both :-) group. adduser theuser dialout adduser theuser dip And check the permissions of pppd: -rwsr-xr-- 1 root dip105532 Jun 19 02:59 /usr/sbin/pppd* (Looks like dip is the right group.) Ciao, Martin
