Re: [OT] Joerg Schilling flames Linux on his Blog

From: Alexander E. Patrakov
Date: Thu May 26 2005 - 07:47:22 EST

Next message: Romano Giannetti: "Re: [PATCH] show swsuspend only on .config where it can compile"
Previous message: Mel Gorman: "Re: Avoiding external fragmentation with a placement policy Version11"
In reply to: Bill Davidsen: "Re: OT] Joerg Schilling flames Linux on his Blog"
Next in thread: Joerg Schilling: "Re: [OT] Joerg Schilling flames Linux on his Blog"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thursday 26 May 2005 16:15, Joerg Schilling wrote:

> The problem was that you could send SCSI commands on R/O fds and fixing the
> problem would have been to forbid sending SCSI commands on R/O fds.

Unfortunately, this is not going to work. It would work only if the only app
that has to send SCSI commands were cdrecord. Then really, a non-setuid
program just would not be able to get a R/W fd, and setuid ones are assumed
to be trusted.

The problem is that many CD audio players also send SCSI commands in order to
extract digital audio data. Are you proposing to make them setuid root? use a
well-defined setuid helper? other solution?

--
Alexander E. Patrakov
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Romano Giannetti: "Re: [PATCH] show swsuspend only on .config where it can compile"
Previous message: Mel Gorman: "Re: Avoiding external fragmentation with a placement policy Version11"
In reply to: Bill Davidsen: "Re: OT] Joerg Schilling flames Linux on his Blog"
Next in thread: Joerg Schilling: "Re: [OT] Joerg Schilling flames Linux on his Blog"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]