Date: Thu, 16 Apr 1998 16:04:36 -0600 (MDT) From: Sasha Egan <wildcard@dax.belen.k12.nm.us> To: Doug White <dwhite@resnet.uoregon.edu> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: PPP:PAP:WIN95:FreeBSD Message-ID: <Pine.BSF.3.96.980416154114.10575A-300000@dax.belen.k12.nm.us> In-Reply-To: <Pine.BSF.3.96.980416141541.7029l-100000@gdi.uoregon.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
This message is in MIME format. The first part should be readable text,
while the remaining parts are likely unreadable without MIME-aware tools.
Send mail to mime@docserver.cac.washington.edu for more info.
--0-1416442568-892764276=:10575
Content-Type: TEXT/PLAIN; charset=US-ASCII
> I have the hacked version of pppd installed in /usr/sbin
> bash$ ls -al pppd
> -r-sr-xr-x 1 root bin 77824 Apr 16 11:28 pppd
>Huh? You shouldn't have to hack pppd.
This version does some things that the old pppd couldn't do...it operates
with mods to update utmp when someone logs in using pap against the system
pwd.db and to use ppp.disabled and ppp.shells which act like /etc/shells.
utmp modes are in 2.2-RELEASE but this version fixes some bugs.
That is quoted from the README attached with the pppkit pppd.
If you have any other recomendation, I will gladly listen.
src code attached if you are intrested.
here is ppplogin.sh and fancyppplogin.sh they are identecie I think.
> bash$ cat /etc/ppp/options
> dns1 192.168.1.1
> proxyarp
>Hm, no pap, no address specification.
>Danger Will Robinson: This setup allows *unauthenticated* access to your
>machine. You will want to add `+pap' to options to force PAP
>authentication.
it is forced...if you look in the shell scripts that I sent you will see
that it is included in the called command lines. The scripts do nothing
but set certain variables for each of the options that pppd requires.
although...I do believe that you are right in the area that it is
dangerous since you have a suid program that is accessable by a certain
number of people.
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: 2.6.2
mQCNAzQ+Te4AAAEEAMOfXAPvy7YTmgOG+RtdddihcXnlSjuO8AqkaIoGM9rLvkRj
XF0GY4zWlSFDR5QQU8agfyQ8YARl9ICxg8g64cm8Ejyhi87014mYcLx6j/Z4kgBp
oyTCJLELjOb1mdmloMsNoiXoU7iYG8/Wnz9Hf9uCC0FE0S3A57JEJYo0aRu1AAUR
tBh3aWxkY2FyZEBiZWxlbi5rMTIubm0udXM=
=4A/3
-----END PGP PUBLIC KEY BLOCK-----
--0-1416442568-892764276=:10575
Content-Type: TEXT/PLAIN; charset=US-ASCII; name="ppplogin.sh"
Content-Transfer-Encoding: BASE64
Content-ID: <Pine.BSF.3.96.980416160436.10575B@dax.belen.k12.nm.us>
Content-Description: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--0-1416442568-892764276=:10575
Content-Type: TEXT/PLAIN; charset=US-ASCII; name="fancyppplogin.sh"
Content-Transfer-Encoding: BASE64
Content-ID: <Pine.BSF.3.96.980416160436.10575C@dax.belen.k12.nm.us>
Content-Description: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--0-1416442568-892764276=:10575--
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980416154114.10575A-300000>