Re: CD writing in future Linux (stirring up a hornets' nest) (was: Rationale for RLIMIT_MEMLOCK?)

Matthias Andree <[email protected]> wrote:

> S2 Jörg is concerned about the SCSI command filter being too
> restrictive. I'm not sure if it still applies to 2.6.16-rc and what the
> exact commands in question were. I'll let Jörg complete this list.

I am tired today and I need to do other work, so let me parly reply:

Iff there is a user space infrastructure for fine grained privileges,
there is absolutely no problem with a planned and well known restriction.

On Solaris, you (currently) use a profile enabled shell (pfsh, pfksh or pfcsh)
that calls getexecuser() in order to find whether there is a specific treatment 
needed. If this specific treatment is needed, then the shell calls 
execve(/usr/bin/pfexec cmd <args>)
else it calls  execve(cmd <args>)

I did recently voted to require all shells to be profile enabled by default.

With the future plans for extending fine grained privs on Solaris, sending
SCSI commands will become more than one priv.

I proposed to have a low priv right to send commands like inquiry and test unit 
ready. These commands may e.g. be send without interfering a concurrent CD/DVD 
write operation.

The next priv could be the permission for sending simple SCSI commands that 
allow reading from the device.

The next priv could be the permission for sending simple SCSI Commands that
allow writing.

The final priv would allow even vendor specific commands: this is what cdrecord 
needs.

Jörg

-- 
 EMail:[email protected] (home) Jörg Schilling D-13353 Berlin
       [email protected]                (uni)  
       [email protected]     (work) Blog: http://schily.blogspot.com/
 URL:  http://cdrecord.berlios.de/old/private/ ftp://ftp.berlios.de/pub/schily
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

References:
- Rationale for RLIMIT_MEMLOCK?
  - From: Matthias Andree <[email protected]>
- Re: Rationale for RLIMIT_MEMLOCK?
  - From: Arjan van de Ven <[email protected]>
- Re: Rationale for RLIMIT_MEMLOCK?
  - From: Matthias Andree <[email protected]>
- Re: Rationale for RLIMIT_MEMLOCK?
  - From: Arjan van de Ven <[email protected]>
- Re: Rationale for RLIMIT_MEMLOCK?
  - From: Matthias Andree <[email protected]>
- Re: Rationale for RLIMIT_MEMLOCK?
  - From: Arjan van de Ven <[email protected]>
- Re: Rationale for RLIMIT_MEMLOCK?
  - From: Matthias Andree <[email protected]>
- Re: Rationale for RLIMIT_MEMLOCK?
  - From: Joerg Schilling <[email protected]>
- Re: Rationale for RLIMIT_MEMLOCK?
  - From: Lee Revell <[email protected]>
- CD writing in future Linux (stirring up a hornets' nest) (was: Rationale for RLIMIT_MEMLOCK?)
  - From: Matthias Andree <[email protected]>

Prev by Date: greeting from Bi
Next by Date: Re: Rationale for RLIMIT_MEMLOCK?
Previous by thread: Re: CD writing in future Linux (stirring up a hornets' nest) (was: Rationale for RLIMIT_MEMLOCK?)
Next by thread: Re: CD writing in future Linux (stirring up a hornets' nest) (was: Rationale for RLIMIT_MEMLOCK?)
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]