Re: 2.6.8.1 Mis-detect CRDW as CDROM
From: Andreas Messer
Date: Tue Aug 17 2004 - 06:48:24 EST
Joerg Schilling wrote:
> Judging from the number of reports, I would guess that the Linux kernel is
> much more insecure than cdrecord.
>
> What some people did (chmod on /dev/ entries) was definitely always a
> bigger security risk than running cdrecord suid root.
I, dont think, that running cdrecord suid root is a risk, but i think, that
there are much more cd-recording applications, not based on cdrecord, which
may be insecure. Or perhaps someone will write a little programm, wich will
override the firmware.
I think its a good way to filter the commands within the kernel. Its a
additional security-barrage.
Andreas
--
gnuPG keyid: 0xE94F63B7 fingerprint: D189 D5E3 FF4B 7E24 E49D 7638 07C5 924C
E94F 63B7
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/