How PPP Configuration
File Privileges Work
Solaris PPP 4.0 configuration includes the concept of privileges. Privileges determine the precedence of configuration
options, particularly when the same option is invoked in more than
one place. An option that is invoked from a privileged source takes
precedence over the same option that is invoked from a nonprivileged
source.
User Privileges
The only privileged user is superuser (root),
with the UID of zero. All other users are not privileged.
File Privileges
The file $HOME/.ppprc is owned by the user.
Options that are read from $HOME/.ppprc and
from the command line are privileged only if the user who is invoking pppd is root.
Arguments that follow the file option are
privileged.
Effects of Option Privileges
Some options require the invoking
user or source to be privileged in order to work. Options that are
invoked on the command line are assigned the privileges of the user
who is running the pppd command. These options
are not privileged unless the user who is invoking pppd is root.
| | |
|---|
domain
| Privileged
| Requires privileges for use.
|
linkname
| Privileged
| Requires privileges for use.
|
noauth
| Privileged
| Requires privileges for use.
|
nopam
| Privileged
| Requires privileges for use.
|
pam
| Privileged
| Requires privileges for use.
|
plugin
| Privileged
| Requires privileges for use.
|
privgroup
| Privileged
| Requires privileges for use.
|
allow-ip addresses
| Privileged
| Requires privileges for use.
|
name hostname
| Privileged
| Requires privileges for use.
|
plink
| Privileged
| Requires privileges for use.
|
noplink
| Privileged
| Requires privileges for use.
|
plumbed
| Privileged
| Requires privileges for use.
|
proxyarp
| Becomes privileged if noproxyarp has been
specified
| Cannot be overridden by an unprivileged user.
|
defaultroute
| Privileged if nodefaultroute is set in a
privileged file or by a privileged user
| Cannot be overridden by an unprivileged user.
|
disconnect
| Privileged if set in a privileged file or by a privileged user
| Cannot be overridden by an unprivileged user.
|
bsdcomp
| Privileged if set in a privileged file or by a privileged user
| The nonprivileged user cannot specify a code size that is larger
than the privileged user has specified.
|
deflate
| Privileged if set in a privileged file or by a privileged user
| The nonprivileged user cannot specify a code size that is larger
than the privileged user has specified.
|
connect
| Privileged if set in a privileged file or by a privileged user
| Cannot be overridden by an nonprivileged user.
|
init
| Privileged if set in a privileged file or by a privileged user
| Cannot be overridden by an nonprivileged user.
|
pty
| Privileged if set in a privileged file or by a privileged user
| Cannot be overridden by an nonprivileged user.
|
welcome
| Privileged if set in a privileged file or by a privileged user
| Cannot be overridden by an nonprivileged user.
|
ttyname
| Privileged if set in a privileged file Not privileged if set in a nonprivileged file
| Opened with root permissions regardless of who invokes pppd. Opened with the privileges of the user who invokes pppd.
|
|