5467 – kdenetwork-1.1.2-4/kppp

Bug 5467 - kdenetwork-1.1.2-4/kppp

Summary: kdenetwork-1.1.2-4/kppp

Keywords:
Status:	CLOSED NOTABUG
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	kdenetwork
Sub Component:
Version:	6.0
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Preston Brown
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	1999-10-01 14:40 UTC by gerald
Modified:	2008-05-01 15:37 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	1999-10-05 19:46:49 UTC
Embargoed:

Attachments	(Terms of Use)

Description gerald 1999-10-01 14:40:21 UTC

kppp will not work for regular users unless root is
allowed to send a window to the display, i.e.,
I have to say "xhost +localhost" in order to start kppp.

I like the original kppp access restriction vie /etc/kppp
better.

Comment 1 Preston Brown 1999-10-05 19:46:59 UTC

making kppp suid root is a potential security hole, especially as one
can script programs to be started arbitrarily during the login phase.
'su' can be used to become root before starting kppp, or if you have
the latest pam and consolehelper packages, this should all be
automatic.

Note You need to log in before you can comment on or make changes to this bug.