I recently upgraded my box to Mandrake 7.0 and have run into a little
interesting situation.
I use the /etc/ppp/ppp* scripts to control my dialout. I have a simple toggle
script that when clicked, checks for the /var/run/ppp0.pid if not present
calls ppp-on, otherwise it calls ppp-off to disconnect.
Doing suid on pppd and these scripts allows my normal user account to dial out
just fine. However, my user account it unable to disconnect. Seems the
version of the pppd that comes with Mandrake writes the pppd.pid file which
permission 600, owner:group=root. So, when the ppp-off script attempts to cat
that file to get the pid and kill it, it fails. My user account can't read it.
As a temporary workaround, inside the ppp-on.local script (which due to suid
is invoked as user root), I'm changing the pid file permissions to 644 so at
least I can kill without changing to root. I'm assuming the 'cat' call is
still as my actual user, not the suid user.
It seems to me doing all of these SUID's and kludges isn't very secure and
there should be some other way to that is safer and simpler to do.
Anyone have any suggestions or suggested readings to re-configure things?
Thanks,
JEM
--
To unsubscribe: mail ">majordomo@ale.org with "unsubscribe ale" in message body.