I need to set up a situation where I don't want to suid the pppdHi Tony,
binary, yet I want to allow one (and only one) specific user
(besides root) to be able to run pppd (in this case from a serial
terminal login). And, apart from the user login, no passwords
should be needed to do it (which makes su and sudo unsuitable).I've tried linuxconf and looked at pam, the stuff in /etc/security
(userhelper and friends) and other such things, but I can't seem to
find a solution.Is there a way to do this? If so, where can I tweak this to get the
magic happening that I want?Thanks.
Well, I don't know if it is a good, or almost a working idea, but I think you can add a user to the pppusers group, allowing him to run the pppd making pppd set group id, or making the user the own of the pppd.
It is an idea, and may be it doesn't work, but let me know, cause I'm trying to making something like that for the printer daemon.
Bye,
Mario
