Re: [OT] Joerg Schilling flames Linux on his Blog

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Thursday 26 May 2005 16:15, Joerg Schilling wrote:

> The problem was that you could send SCSI commands on R/O fds and fixing the
> problem would have been to forbid sending SCSI commands on R/O fds.

Unfortunately, this is not going to work. It would work only if the only app 
that has to send SCSI commands were cdrecord. Then really, a non-setuid 
program just would not be able to get a R/W fd, and setuid ones are assumed 
to be trusted.

The problem is that many CD audio players also send SCSI commands in order to 
extract digital audio data. Are you proposing to make them setuid root? use a 
well-defined setuid helper? other solution?

-- 
Alexander E. Patrakov
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

[Index of Archives]     [Kernel Newbies]     [Netfilter]     [Bugtraq]     [Photo]     [Stuff]     [Gimp]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Video 4 Linux]     [Linux for the blind]     [Linux Resources]
  Powered by Linux