qnx v4.25G + security patch + tcp/ip v5.0A: pppd does not wo

Tony1 · April 21, 2004, 1:29pm

I can connect to the machine ONLY IF the “auth” AND “+pap” AND “+chap” are
omitted in all of the options files.
The connection is refused with any of those authentication options enabled.
If I run pppd from the command line - it says that it cannot find secrets
needed.
I cannot make pppd to print it’s debug messages no matter where I put the
“debug” keyword: /etc/ppp/options or /etc/ppp/options.ser1

With tcp/ip v4.25D everything works OK.

QNX v4.25G
The Security patch is installed:
/bin/login 24060 26Apr2000
/bin/passwd 29880 26Apr2000
/bin/su 26613 23May2000

/usr/photon/v1.14/bin/phlogin 247208 01Jun2000

/usr/lib/unix3r.lib 15Jun2000
/usr/lib/unix3s.lib 15Jun2000

That’s why I’m pretty sure the security patch is in place.

My /etc/tinit.conf is:
-t /dev/con1 -T /dev/con2
-c “modem -T pppd” -T /dev/ser1

My /etc/ppp/options is:
debug
auth
192.168.255.2:

My /etc/ppp/options.ser1 is:
:192.168.255.254
defaultroute
proxyarp

My /etc/ppp/pap-secrets and /etc/ppp/chap-secrets are:
ftp my_host_name anonimous
admin my_host_name admin

/usr/bin/syslogd is running and has this /etc/syslod.conf:

/tmp/log/syslog must exist!

. /tmp/log/syslog

The file /tmp/log/syslog really exists and has some records from other
utilityes in it.

Tony1 · April 21, 2004, 1:33pm

On Wed, 21 Apr 2004 17:29:10 +0400, I wrote:

With tcp/ip v4.25D everything works OK.
I forgot to say - both security patches for tcp/ip v4.25D are installed

(basic patch and level A patch) if I use tcp/ip v4.25D

Please help!

Tony.

Tony1 · April 22, 2004, 12:09pm

pppd was not writing it’s debug messages in the /tmp/log/syslog because
the /usr/bin/syslogd was started before the /usr/ucb/Tcpip and en1
configuration.

After rectifying this issue I see pppd’s messages in the syslog.

If I omit all authentication options - pppd warns me about “world and/or
group writability” of /etc/ppp/pap-secrets. It is (pap-secrets) endeed
cmod 666, as well as chap-secrets, but pppd does not warn me about
chap-secrets’ excessive file permissions.

When I make /etc/ppp/pap-secrets owned by root, group root, chmod 600 -
(still omitting auth options) - the warning does not appear in the syslog.

This I think shows that pppd does see the file, pap-secrets at least.

Why cannot it find the secrets when auth is required?

Tony.

PS Please comment, ASAP!

Tony1 · April 22, 2004, 2:07pm

Only if I put both “auth” and “login” options in /etc/ppp/options file -
pppd attempts to authenticate the caller.

Authentication allways fails, no matter what I put as a secret for a given
login name. It fails even if “” is set as the secret. (By the way, it is
not 100% clear what it is - either “” or " " in the documentation)

I tryed to make an account for “guest” with password == guest. Does not
help.
I tryed to copy it’s hashed password into pap-secrets file as the secret.
Does not help either.

I did not try to use @ symbol in the secret field of the pap-secrets to
point to the external file with the secret.

Tony.

Tony1 · April 22, 2004, 6:36pm

No matter what I do I have the same report:

Apr 22 22:18:31 sauron syslogd: restart
Apr 22 22:21:36 localhost pppd[364]: Could not set session: Operation not
permitted
Apr 22 22:21:36 localhost pppd[364]: pppd 2.3.5 started by System, uid 0
Apr 22 22:21:36 localhost pppd[364]: Using interface vp0
Apr 22 22:21:36 localhost pppd[364]: Connect: vp0 <–> //2/dev/ser1
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfReq id=0x1
<magic 0x866a235a>
]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfReq id=0x2 <asyncmap
0xa0000> <magic 0xc7d109e>
<callback 0x600>]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfRej id=0x2 <callback
0x623>]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfAck id=0x1
<magic 0x866a235a>
]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfReq id=0x3 <asyncmap
0xa0000> <magic 0xc7d109e>
]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfAck id=0x3 <asyncmap
0xa0000> <magic 0xc7d109e>
]
Apr 22 22:21:36 localhost pppd[364]: rcvd [PAP AuthReq id=0x1 user=“guest”
password=“guest”]
Apr 22 22:21:36 localhost pppd[364]: PAP authentication failure for guest
Apr 22 22:21:36 localhost pppd[364]: sent [PAP AuthNak id=0x1 “Login
incorrect”]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP TermReq id=0x2
“Authentication failed”]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP TermAck id=0x2]
Apr 22 22:21:36 localhost pppd[364]: Connection terminated.
Apr 22 22:21:37 localhost pppd[364]: Exit.

I’ve tryed to make /etc/ppp/pap-secrets to look like this:
guest * “”

Even this fails!

I’ve tryed to use pppd v2.3.0 from tcpip v4.25D security patch A it does
not even start under Tcpip
v5.0A…

Currently my /etc/ppp/opions is:
debug
192.168.255.2:
auth
login

I’m desperate!
Please comment.

Tony.

Xiaodan_Tang1 · April 24, 2004, 1:29am

Is it work if below line is in /etc/ppp/pap-secret ?

guest * guest

-xtang

Tony <mts.spb.suxx@mail.ru> wrote in message
news:opr6vfaxeko93ri4@inn.qnx.comnews.mail.ru…

No matter what I do I have the same report:

Apr 22 22:18:31 sauron syslogd: restart
Apr 22 22:21:36 localhost pppd[364]: Could not set session: Operation not
permitted
Apr 22 22:21:36 localhost pppd[364]: pppd 2.3.5 started by System, uid 0
Apr 22 22:21:36 localhost pppd[364]: Using interface vp0
Apr 22 22:21:36 localhost pppd[364]: Connect: vp0 <–> //2/dev/ser1
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfReq id=0x1 <auth pap
magic 0x866a235a> ]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfReq id=0x2 <asyncmap
0xa0000> <magic 0xc7d109e> <callback 0x600>]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfRej id=0x2 <callback
0x623>]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfAck id=0x1 <auth pap
magic 0x866a235a> ]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfReq id=0x3 <asyncmap
0xa0000> <magic 0xc7d109e> ]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfAck id=0x3 <asyncmap
0xa0000> <magic 0xc7d109e> ]
Apr 22 22:21:36 localhost pppd[364]: rcvd [PAP AuthReq id=0x1 user=“guest”
password=“guest”]
Apr 22 22:21:36 localhost pppd[364]: PAP authentication failure for guest
Apr 22 22:21:36 localhost pppd[364]: sent [PAP AuthNak id=0x1 “Login
incorrect”]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP TermReq id=0x2
“Authentication failed”]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP TermAck id=0x2]
Apr 22 22:21:36 localhost pppd[364]: Connection terminated.
Apr 22 22:21:37 localhost pppd[364]: Exit.

I’ve tryed to make /etc/ppp/pap-secrets to look like this:
guest * “”

Even this fails!

I’ve tryed to use pppd v2.3.0 from tcpip v4.25D security patch A it does
not even start under Tcpip
v5.0A…

Currently my /etc/ppp/opions is:
debug
192.168.255.2:
auth
login

I’m desperate!
Please comment.

Tony.

Xiaodan_Tang1 · April 24, 2004, 1:31am

And try to take out the “login” option.

-xtang

Xiaodan Tang <xtang@qnx.com> wrote in message
news:c6ce2g$bqh$1@inn.qnx.com…

Is it work if below line is in /etc/ppp/pap-secret ?

guest * guest

-xtang

Tony <> mts.spb.suxx@mail.ru> > wrote in message
news:> opr6vfaxeko93ri4@inn.qnx.comnews.mail.ru> …
No matter what I do I have the same report:

Apr 22 22:18:31 sauron syslogd: restart
Apr 22 22:21:36 localhost pppd[364]: Could not set session: Operation
not
permitted
Apr 22 22:21:36 localhost pppd[364]: pppd 2.3.5 started by System, uid 0
Apr 22 22:21:36 localhost pppd[364]: Using interface vp0
Apr 22 22:21:36 localhost pppd[364]: Connect: vp0 <–> //2/dev/ser1
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfReq id=0x1 <auth pap
magic 0x866a235a> ]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfReq id=0x2 <asyncmap
0xa0000> <magic 0xc7d109e> <callback 0x600>]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfRej id=0x2 <callback
0x623>]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfAck id=0x1 <auth pap
magic 0x866a235a> ]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP ConfReq id=0x3 <asyncmap
0xa0000> <magic 0xc7d109e> ]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP ConfAck id=0x3 <asyncmap
0xa0000> <magic 0xc7d109e> ]
Apr 22 22:21:36 localhost pppd[364]: rcvd [PAP AuthReq id=0x1
user=“guest”
password=“guest”]
Apr 22 22:21:36 localhost pppd[364]: PAP authentication failure for
guest
Apr 22 22:21:36 localhost pppd[364]: sent [PAP AuthNak id=0x1 “Login
incorrect”]
Apr 22 22:21:36 localhost pppd[364]: sent [LCP TermReq id=0x2
“Authentication failed”]
Apr 22 22:21:36 localhost pppd[364]: rcvd [LCP TermAck id=0x2]
Apr 22 22:21:36 localhost pppd[364]: Connection terminated.
Apr 22 22:21:37 localhost pppd[364]: Exit.

I’ve tryed to make /etc/ppp/pap-secrets to look like this:
guest * “”

Even this fails!

I’ve tryed to use pppd v2.3.0 from tcpip v4.25D security patch A it
does
not even start under Tcpip
v5.0A…

Currently my /etc/ppp/opions is:
debug
192.168.255.2:
auth
login

I’m desperate!
Please comment.

Tony.

Tony1 · April 25, 2004, 10:56am

“Xiaodan Tang” <xtang@qnx.com> ÓÏÏÂÝÉÌ/ÓÏÏÂÝÉÌÁ × ÎÏ×ÏÓÔÑÈ ÓÌÅÄÕÀÝÅÅ:
news:c6ce4i$brh$1@inn.qnx.com…

And try to take out the “login” option.
As I complained earlier - if I use either +pap or +chap WITHOUT login

option - pppd “does not see” an existing /etc/ppp/pap-secrets (and
/etc/ppp/chap-secrets too!).

Tony.

Tony1 · April 27, 2004, 10:35am

On Fri, 23 Apr 2004 21:29:59 -0400, Xiaodan Tang <xtang@qnx.com> wrote:

Is it work if below line is in /etc/ppp/pap-secret ?
guest * guest

This does not help too.

Once again: if I omit “login” option - pppd v2.3.5 does not find secrets.
It can see the secrets file if I omit ANY authentication options, it
even warns me about file permissions if I make’em too wide.

Please comment.

PS Were there any update to TCP/IP v5.0A, is it a beta or release?

Tony1 · April 27, 2004, 10:57am

One may notice that pppd sometimes reports as on “localhost” and sometimes
as “127.0.0.1” which is the same… I do have “127.0.0.1 localhost” in
/etc/hosts file.

Apr 27 14:20:24 sauron syslogd: restart
Apr 27 14:20:27 node<<2>> sshd[87]: log: Server listening on port 22.
Apr 27 14:20:27 node<<2>> sshd[87]: log: Generating 768 bit RSA key.
Apr 27 14:20:31 node<<2>> sshd[87]: log: RSA key generation complete.
Apr 27 14:21:28 127.0.0.1 pppd[214]: Could not set session: Operation not
permitted
Apr 27 14:21:28 127.0.0.1 pppd[214]: pppd 2.3.5 started by System, uid 0
Apr 27 14:21:28 localhost pppd[214]: Using interface vp0
Apr 27 14:21:28 localhost pppd[214]: Connect: vp0 <–> //2/dev/ser1
Apr 27 14:21:28 localhost pppd[214]: sent [LCP ConfReq id=0x1
<magic 0xfce99801> ]
Apr 27 14:21:29 localhost pppd[214]: rcvd [LCP ConfAck id=0x1
<magic 0xfce99801> ]
Apr 27 14:21:31 localhost pppd[214]: rcvd [LCP ConfReq id=0x3 <asyncmap
0xa0000> <magic 0x43a2337> <callback 0x600>]
Apr 27 14:21:31 localhost pppd[214]: sent [LCP ConfRej id=0x3 <callback
0x623>]
Apr 27 14:21:31 localhost pppd[214]: rcvd [LCP ConfReq id=0x4 <asyncmap
0xa0000> <magic 0x43a2337> ]
Apr 27 14:21:31 localhost pppd[214]: sent [LCP ConfAck id=0x4 <asyncmap
0xa0000> <magic 0x43a2337> ]
Apr 27 14:21:31 localhost pppd[214]: rcvd [PAP AuthReq id=0x1 user=“guest”
password=“guest”]
Apr 27 14:21:31 localhost pppd[214]: PAP authentication failure for guest
Apr 27 14:21:31 localhost pppd[214]: sent [PAP AuthNak id=0x1 “Login
incorrect”]
Apr 27 14:21:31 localhost pppd[214]: sent [LCP TermReq id=0x2
“Authentication failed”]
Apr 27 14:21:31 localhost pppd[214]: rcvd [LCP TermAck id=0x2]
Apr 27 14:21:31 localhost pppd[214]: Connection terminated.
Apr 27 14:21:31 localhost pppd[214]: Exit.
Apr 27 14:22:58 localhost pppd[309]: Could not set session: Operation not
permitted
Apr 27 14:22:58 localhost pppd[309]: pppd 2.3.5 started by System, uid 0
Apr 27 14:22:58 localhost pppd[309]: Using interface vp0
Apr 27 14:22:58 localhost pppd[309]: Connect: vp0 <–> //2/dev/ser1
Apr 27 14:22:58 localhost pppd[309]: sent [LCP ConfReq id=0x1 <magic
0xf689d54d> ]
Apr 27 14:22:58 localhost pppd[309]: rcvd [LCP ConfReq id=0x2 <asyncmap
0xa0000> <magic 0x43b8183> <callback 0x600>]
Apr 27 14:22:58 localhost pppd[309]: sent [LCP ConfRej id=0x2 <callback
0x689>]
Apr 27 14:22:58 localhost pppd[309]: rcvd [LCP ConfAck id=0x1 <magic
0xf689d54d> ]
Apr 27 14:22:58 localhost pppd[309]: rcvd [LCP ConfReq id=0x3 <asyncmap
0xa0000> <magic 0x43b8183> ]
Apr 27 14:22:58 localhost pppd[309]: sent [LCP ConfAck id=0x3 <asyncmap
0xa0000> <magic 0x43b8183> ]
Apr 27 14:22:58 localhost pppd[309]: sent [IPCP ConfReq id=0x1 <addr
192.168.0.252> <compress VJ 0f 01>]
Apr 27 14:22:58 localhost pppd[309]: rcvd [IPCP ConfReq id=0x1 <compress
VJ 0f 01> <addr 0.0.0.0> <ms-dns 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns
0.0.0.0> <ms-wins 0.0.0.0>]
Apr 27 14:22:58 localhost pppd[309]: sent [IPCP ConfRej id=0x1 <ms-dns
0.0.0.0> <ms-wins 0.0.0.0> <ms-dns 0.0.0.0> <ms-wins 0.0.0.0>]
Apr 27 14:22:58 localhost pppd[309]: rcvd [proto=0x80fd] 01 01 00 0f 12 06
00 00 00 01 11 05 00 01 04
Apr 27 14:22:58 localhost pppd[309]: Unsupported protocol (0x80fd) received
Apr 27 14:22:58 localhost pppd[309]: sent [LCP ProtRej id=0x2 80 fd 01 01
00 0f 12 06 00 00 00 01 11 05 00 01 04]
Apr 27 14:22:58 localhost pppd[309]: rcvd [IPCP ConfAck id=0x1 <addr
192.168.0.252> <compress VJ 0f 01>]
Apr 27 14:22:59 localhost pppd[309]: rcvd [IPCP ConfReq id=0x2 <compress
VJ 0f 01> <addr 0.0.0.0>]
Apr 27 14:22:59 localhost pppd[309]: sent [IPCP ConfNak id=0x2 <addr
192.168.0.253>]
Apr 27 14:22:59 localhost pppd[309]: rcvd [IPCP ConfReq id=0x3 <compress
VJ 0f 01> <addr 192.168.0.253>]
Apr 27 14:22:59 localhost pppd[309]: sent [IPCP ConfAck id=0x3 <compress
VJ 0f 01> <addr 192.168.0.253>]
Apr 27 14:22:59 localhost pppd[309]: found interface en1 for proxy arp
Apr 27 14:22:59 localhost pppd[309]: local IP address 192.168.0.252
Apr 27 14:22:59 localhost pppd[309]: remote IP address 192.168.0.253
Apr 27 14:24:34 127.0.0.1 pppd[309]: rcvd [LCP TermReq id=0x4]
Apr 27 14:24:34 127.0.0.1 pppd[309]: LCP terminated by peer
Apr 27 14:24:34 127.0.0.1 pppd[309]: sent [LCP TermAck id=0x4]
Apr 27 14:24:37 localhost pppd[309]: Connection terminated.
Apr 27 14:24:37 localhost pppd[309]: Exit.
Apr 27 14:25:35 localhost pppd[950]: peer authentication required but no
suitable secret(s) found
Apr 27 14:25:35 localhost pppd[950]: for authenticating any peer to us
(sauron)
Apr 27 14:42:16 127.0.0.1 pppd[1197]: Could not set session: Operation not
permitted
Apr 27 14:42:16 localhost pppd[1197]: pppd 2.3.5 started by System, uid 0
Apr 27 14:42:16 localhost pppd[1197]: Using interface vp0
Apr 27 14:42:16 localhost pppd[1197]: Connect: vp0 <–> //2/dev/ser1
Apr 27 14:42:16 localhost pppd[1197]: Warning - secret file
/etc/ppp/pap-secrets has world and/or group access
Apr 27 14:42:16 localhost pppd[1197]: sent [LCP ConfReq id=0x1 <magic
0xc2d60e03> ]
Apr 27 14:42:16 localhost pppd[1197]: rcvd [LCP ConfReq id=0x2 <asyncmap
0xa0000> <magic 0x44d219c> <callback 0x600>]
Apr 27 14:42:16 localhost pppd[1197]: sent [LCP ConfRej id=0x2 <callback
0x6d6>]
Apr 27 14:42:16 localhost pppd[1197]: rcvd [LCP ConfAck id=0x1 <magic
0xc2d60e03> ]
Apr 27 14:42:16 localhost pppd[1197]: rcvd [LCP ConfReq id=0x3 <asyncmap
0xa0000> <magic 0x44d219c> ]
Apr 27 14:42:16 localhost pppd[1197]: sent [LCP ConfAck id=0x3 <asyncmap
0xa0000> <magic 0x44d219c> ]
Apr 27 14:42:16 localhost pppd[1197]: sent [IPCP ConfReq id=0x1 <addr
192.168.0.252> <compress VJ 0f 01>]
Apr 27 14:42:17 localhost pppd[1197]: rcvd [IPCP ConfReq id=0x1 <compress
VJ 0f 01> <addr 0.0.0.0> <ms-dns 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns
0.0.0.0> <ms-wins 0.0.0.0>]
Apr 27 14:42:17 localhost pppd[1197]: sent [IPCP ConfRej id=0x1 <ms-dns
0.0.0.0> <ms-wins 0.0.0.0> <ms-dns 0.0.0.0> <ms-wins 0.0.0.0>]
Apr 27 14:42:17 localhost pppd[1197]: rcvd [proto=0x80fd] 01 01 00 0f 12
06 00 00 00 01 11 05 00 01 04
Apr 27 14:42:17 localhost pppd[1197]: Unsupported protocol (0x80fd)
received
Apr 27 14:42:17 localhost pppd[1197]: sent [LCP ProtRej id=0x2 80 fd 01 01
00 0f 12 06 00 00 00 01 11 05 00 01 04]
Apr 27 14:42:17 localhost pppd[1197]: rcvd [IPCP ConfAck id=0x1 <addr
192.168.0.252> <compress VJ 0f 01>]
Apr 27 14:42:17 localhost pppd[1197]: rcvd [IPCP ConfReq id=0x2 <compress
VJ 0f 01> <addr 0.0.0.0>]
Apr 27 14:42:17 localhost pppd[1197]: sent [IPCP ConfNak id=0x2 <addr
192.168.0.253>]
Apr 27 14:42:17 localhost pppd[1197]: rcvd [IPCP ConfReq id=0x3 <compress
VJ 0f 01> <addr 192.168.0.253>]
Apr 27 14:42:17 localhost pppd[1197]: sent [IPCP ConfAck id=0x3 <compress
VJ 0f 01> <addr 192.168.0.253>]
Apr 27 14:42:17 localhost pppd[1197]: found interface en1 for proxy arp
Apr 27 14:42:17 localhost pppd[1197]: local IP address 192.168.0.252
Apr 27 14:42:17 localhost pppd[1197]: remote IP address 192.168.0.253
Apr 27 14:44:39 127.0.0.1 pppd[1197]: rcvd [LCP TermReq id=0x4]
Apr 27 14:44:39 127.0.0.1 pppd[1197]: LCP terminated by peer
Apr 27 14:44:39 localhost pppd[1197]: sent [LCP TermAck id=0x4]
Apr 27 14:44:39 localhost pppd[1197]: Hangup (SIGHUP)
Apr 27 14:44:42 localhost pppd[1197]: Connection terminated.
Apr 27 14:44:42 localhost pppd[1197]: Exit.

Tony.

Tony1 · May 17, 2004, 1:18pm

If someone has got:
QNX TCP/IP Runtime version 5.0, Patch A (Beta), January 3rd 2003
QNX TCP/IP Runtime version 5.0, Patch A (Beta), April 17th 2003

or:
QNX TCP/IP Toolkit version 5.0, Patch A (Beta), January 3rd 2003
QNX TCP/IP Toolkit version 5.0, Patch A (Beta), April 17th 2003,

please have a look what the version of pppd is there. Were there any fixes
for it since:
QNX TCP/IP Runtime version 5.0, release date February 2001
QNX TCP/IP Toolkit version 5.0, release date February 2001?

If there were fixes for pppd v2.3.5 - could you mail me the PPP-daemon to
check if I have a mis-configuration problem or there IS a bug in pppd
v2.3.5?

Thank you in advance!
Tony.

PS Please help ASAP!