> fwiw, my belief is that one should never set a program SUID unless there is > absolutely no other way around the problem.
You must set a default route to your ISP's gateway => you must modify your routing table => you must be root => you get pppd to do this for you with the defaultroute option => there is no way round running pppd as root. Well IMHO it's not worth not doing it. Any distro not running pppd as root? When was the last security bug in pppd? > The other way around this particular problem is to set the device and lock > files to have read and write group permissions set, and then run the programs > with the SGID bit set. You can get pretty much the same effect with chown root.dialout /sbin/pppd chmod 4550 /sbin/pppd The pppd binary is only executable by thoe in group dialout, for everyone else the suid bit is ineffective. Volker -- Volker Kuhlmann is possibly list0570 with the domain in header http://volker.dnsalias.net/ Please do not CC list postings to me.
