--- ppp-2.4.3.orig/debian/patches/winbind-setuid-failure-check
+++ ppp-2.4.3/debian/patches/winbind-setuid-failure-check
@@ -0,0 +1,22 @@
+diff -Nurp ppp-2.4.3/pppd/plugins/winbind.c ppp-2.4.3.new/pppd/plugins/winbind.c
+--- ppp-2.4.3/pppd/plugins/winbind.c	2006-07-05 09:09:57.000000000 +0000
++++ ppp-2.4.3.new/pppd/plugins/winbind.c	2006-07-05 09:18:33.000000000 +0000
+@@ -338,6 +338,7 @@ unsigned int run_ntlm_auth(const char *u
+         }
+ 
+ 	if (forkret == 0) {
++		uid_t uid = getuid();
+ 		/* child process */
+ 		close(child_out[0]);
+ 		close(child_in[1]);
+@@ -345,6 +346,10 @@ unsigned int run_ntlm_auth(const char *u
+ 		/* run winbind as the user that invoked pppd */
+ 		setgid(getgid());
+ 		setuid(getuid());
++		if (getuid() != uid) {
++			perror("pppd/winbind: could not setuid to orig uid");
++			exit(1);
++		}
+ 		execl("/bin/sh", "sh", "-c", ntlm_auth, NULL);  
+ 		perror("pppd/winbind: could not exec /bin/sh");
+ 		exit(1);