[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Another ADSL Success Story



On Tue, 10 Apr 2001, Shaul Karl wrote:

> >
> > Well, I finally realized that CNet Technologies Pro200 card has a driver
> > that comes with the Linux kernel, which is not Tulip. Actually, I found it
> > indirectly, by seeing that a GPLed C module name dmtf.c or something was
> > included in CNet'sdrivers package, and afterwards seeing that there was
> > already such a module under /lib/modules.
> >
> > In any case, after eth0 was showing in "ifconfig -a" I followed the
> > instructions in the ADSL-Bezeq HOWTO And it was relatively
> > straightforwardto get the Internet connectivity. I managed to download
> > GIMP 1.3.x throught its CVS, and downloaded something from iglu.org.il at
> > 170 KB/sec, so you could say it works pretty well.
> >
> > What I couldn't do is make the bash script that raises the ADSL connection
> > an SUID-Root one, but that is a different problem.
> 
> An SUID-Root shell script is considered a security risk as far as I know.

And for that reason redhat have long-ago put a frame-work for spesific
network interfaces to be controlloed (up/down) by users. I figure that
this initiates a seperate process by root, after doing some
sanitation. Note that I never bothered verifying that.

The scripts that are run by the ifup scripts have plently of places where
you can easily hook-up your own scripts.

see the ifup script and usernetctl(8) . I don't remember exactly what
config files, and I never used it.

Is it safe?

-- 
Tzafrir Cohen
mailto:tzafrir@technion.ac.il
http://www.technion.ac.il/~tzafrir



=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il