> I need to set up a situation where I don't want to suid the pppd
> binary, yet I want to allow one (and only one) specific user
> (besides root) to be able to run pppd (in this case from a serial
> terminal login). And, apart from the user login, no passwords
> should be needed to do it (which makes su and sudo unsuitable).
pppd is designed to be setuid. Read its documentation.
If you don't like that, write a setuid perl wrapper that verifies that the
proper person is using it and then execs pppd if it's allowed.
You could also hide the wrapper in a directory that can be read only be the
authorised user *and root, of course).
_______________________________________________
Redhat-devel-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-devel-list
