On Wed, Jul 07, 1999 at 10:02:44PM +0100, Brian Somers wrote:
>
> This aside, I think there are more bits required for the patches :*1
>
> rc.conf.5 needs to be updated - that's the easy bit.
Done - see attached.
> I think we also need a src/etc/ppp/ppp.conf that installs with 0600
> permissi
>From the keyboard of Boris Staeblow:
> >> Why is rc.conf readable by world?!
> >
> >Why not?
>
> What about that:
>
> spppconfig_isp0="authproto=chap myauthname=foo myauthsecret='top secret'
> hisauthname=some-gw hisauthsecret='another secret'"
I'm not quite satisfied with the way the passwor
Alex Zepeda <[EMAIL PROTECTED]> writes:
> > > Why is rc.conf readable by world?!
> >
> > Why not?
>
> What reason would the rest of the "world" have to read rc.conf? It could
> only create a possible security risk.
Unix systems are typically designed the other way around - don't
read-protect
> > > What reason would the rest of the "world" have to read rc.conf? It could
> > > only create a possible security risk.
> >
> > This is shabby reasoning. rc.conf contains public system configuration
> > data, which may need to be consumed by non-root processes.
>
> What kind of non-root pr
On Wed, 7 Jul 1999, Mike Smith wrote:
> > > > Why is rc.conf readable by world?!
> > >
> > > Why not?
> >
> > What reason would the rest of the "world" have to read rc.conf? It could
> > only create a possible security risk.
>
> This is shabby reasoning. rc.conf contains public system config
> > > Why is rc.conf readable by world?!
> >
> > Why not?
>
> What reason would the rest of the "world" have to read rc.conf? It could
> only create a possible security risk.
This is shabby reasoning. rc.conf contains public system configuration
data, which may need to be consumed by non-roo
On Wed, Jul 07, 1999 at 01:00:46PM +0100, Steve O'Hara-Smith wrote:
>
> On 07-Jul-99 Ladavac Marino wrote:
>
> sysinstall drops you into ppp and you have to use the term
> command to log in manually.
Ahha, it's not quite as bad as that. sysinstall asks you some questions
and writes a p
On Wed, Jul 07, 1999 at 10:02:44PM +0100, Brian Somers wrote:
>
> Ha, and you thought it'd be straight forward ;^P
>
;b just time mate :) I'm off on holiday on Saturday, until the next Sunday.
Day off work on the Monday. If I don't get it tied up before I go I'll finish
it on my return.
Joe
-
On Wed, 7 Jul 1999 Keith Stevenson wrote:
>> Why is rc.conf readable by world?!
>
>
>Why not?
What about that:
spppconfig_isp0="authproto=chap myauthname=foo myauthsecret='top secret'
hisauthname=some-gw hisauthsecret='another secret'"
Boris
--
[EMAIL PROTECTED]
Boris Staeblow
To Unsu
On Wed, 7 Jul 1999, Keith Stevenson wrote:
> On Wed, Jul 07, 1999 at 01:19:02PM -0700, Alex Zepeda wrote:
> > On Wed, 7 Jul 1999, Ladavac Marino wrote:
> >
> > > [ML] You do not really want these on the command line for
> > > everyone to see with ps. (nor in rc.conf for everyone to see with e
> On Mon, Jul 05, 1999 at 08:59:41PM +0100, Brian Somers wrote:
> > [-current cc'd - please don't make this a big thread !]
> > /etc/start_if.tun0 with an ``exec ppp ...''. This starts things up
> > at the correct point.
> >
> > However, maybe it's time for a knob in rc.conf ? Something like
>
On Wed, Jul 07, 1999 at 01:19:02PM -0700, Alex Zepeda wrote:
> On Wed, 7 Jul 1999, Ladavac Marino wrote:
>
> > [ML] You do not really want these on the command line for
> > everyone to see with ps. (nor in rc.conf for everyone to see with e.g.
> > cat)
>
> Why is rc.conf readable by world?!
On Wed, 7 Jul 1999, Ladavac Marino wrote:
> [ML] You do not really want these on the command line for
> everyone to see with ps. (nor in rc.conf for everyone to see with e.g.
> cat)
Why is rc.conf readable by world?!
- alex
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscr
On Wed, 7 Jul 1999, Josef Karthauser wrote:
> Hmm... how to do this then? The sppp setup code in rc.* allows
> username/password to be specified. Can it be done in the environment
> then? (If rc.conf is visable then the sppp config gives usernames and
> passwords away as it stands today.)
Eve
On 07-Jul-99 Ladavac Marino wrote:
>> It does :) That said doesn't sysinstall using ppp to do a net
>> install?
>> How does it setup username/password, etc.
> [ML] It asks for it in a dialog box, IIRC (never having used it
>:)
sysinstall drops you into ppp and you have to use the
> -Original Message-
> From: Josef Karthauser [SMTP:[EMAIL PROTECTED]]
> Sent: Wednesday, July 07, 1999 1:22 PM
> To: Ladavac Marino
> Cc: Brian Somers; Mark Thomas; [EMAIL PROTECTED]; Wayne
> Self
> Subject: Re: userland ppp - startup
>
> On Wed,
On Wed, Jul 07, 1999 at 12:20:35PM +0200, Ladavac Marino wrote:
> [ML] Don't know about sppp, but the only halfway secure way to
> keep this sensitive data is in a file readable by root, and having the
> program which needs it setuid root. Sounds a lot like
> /etc/ppp/ppp.conf, doesn't it?
> -Original Message-
> From: Josef Karthauser [SMTP:[EMAIL PROTECTED]]
> Sent: Wednesday, July 07, 1999 11:53 AM
> To: Ladavac Marino
> Cc: Brian Somers; Mark Thomas; [EMAIL PROTECTED]; Wayne
> Self
> Subject: Re: userland ppp - startup
>
> On Wed,
On Wed, Jul 07, 1999 at 11:46:27AM +0200, Ladavac Marino wrote:
>
> > Something like this should do it. It may be nice to also allow the
> > authname/authkey to be specified on the command line so that they
> > can easily be set in rc.conf, by hand or by sysinstall.
> >
> [ML] You do not
> -Original Message-
> From: Josef Karthauser [SMTP:[EMAIL PROTECTED]]
> Sent: Wednesday, July 07, 1999 11:38 AM
> To: Brian Somers
> Cc: Mark Thomas; [EMAIL PROTECTED]; Wayne Self
> Subject: Re: userland ppp - startup
>
> Something like this should d
On Mon, Jul 05, 1999 at 08:59:41PM +0100, Brian Somers wrote:
> [-current cc'd - please don't make this a big thread !]
> /etc/start_if.tun0 with an ``exec ppp ...''. This starts things up
> at the correct point.
>
> However, maybe it's time for a knob in rc.conf ? Something like
>
> ppp_enab
21 matches
Mail list logo
