Bug 5467

Summary: kdenetwork-1.1.2-4/kppp
Product: [Retired] Red Hat Linux Reporter: gerald
Component: kdenetworkAssignee: Preston Brown <pbrown>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 6.0   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 1999-10-05 19:46:49 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description gerald 1999-10-01 14:40:21 UTC
kppp will not work for regular users unless root is
allowed to send a window to the display, i.e.,
I have to say "xhost +localhost" in order to start kppp.

I like the original kppp access restriction vie /etc/kppp
better.

Comment 1 Preston Brown 1999-10-05 19:46:59 UTC
making kppp suid root is a potential security hole, especially as one
can script programs to be started arbitrarily during the login phase.
'su' can be used to become root before starting kppp, or if you have
the latest pam and consolehelper packages, this should all be
automatic.