Re: SG_IO and security

From: Alan Cox
Date: Thu Aug 12 2004 - 16:31:55 EST

Next message: Adrian Bunk: "[2.6 patch] fix NCR53C9x.c compile warning (fwd)"
Previous message: Charlie Brej: "Re: Reproducable user mode system hang"
In reply to: Jens Axboe: "Re: SG_IO and security"
Next in thread: Alan Cox: "Re: SG_IO and security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Iau, 2004-08-12 at 19:29, Jens Axboe wrote:
> +static int sg_allowed_cmd(unsigned char opcode, int may_write)
> +{
> + if (capable(CAP_SYS_RAWIO))
> + return 1;
> + if (may_write)
> + return 1;

I agree with passing the data down, unfortunately anyone with a raw
device access they can open for write can still physically anihiliate
the hardware. That causes real problems for anyone allocating partitions
for databases like Oracle, giving direct user access to devices for
virtualization like UML, giving direct user access to a M/O drive.

It also doesn't solve the read/write outside of partition problem.

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Adrian Bunk: "[2.6 patch] fix NCR53C9x.c compile warning (fwd)"
Previous message: Charlie Brej: "Re: Reproducable user mode system hang"
In reply to: Jens Axboe: "Re: SG_IO and security"
Next in thread: Alan Cox: "Re: SG_IO and security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]