Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices

From: Marc Ballarin
Date: Sat Aug 21 2004 - 02:36:56 EST

Next message: Kalin KOZHUHAROV: "Re: Entirely ignoring TCP and UDP checksum in kernel level"
Previous message: Hans Reiser: "Re: 2.6.8.1-mm2"
In reply to: David Greaves: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
Next in thread: David Greaves: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 21 Aug 2004 07:58:03 +0100
David Greaves <david@xxxxxxxxxxxx> wrote:

> Can someone explain why it isn't anyone with _write_ access to the
> device? Surely it's better to drop a user into a group or setgid a
> program?
>
> If I have write access to a device then I can wipe it's media anyway.
> Is there something I'm missing?
>

With RAW_IO access you cannot only wipe the media, but the entire
firmware (not only wipe it, but also upload a malicious version that will
screw up the entire SCSI or IDE bus).

Andreas Messer and I are working on an improved filter that works per
device and is configurable from userspace. It's not easy though.

Regards
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Kalin KOZHUHAROV: "Re: Entirely ignoring TCP and UDP checksum in kernel level"
Previous message: Hans Reiser: "Re: 2.6.8.1-mm2"
In reply to: David Greaves: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
Next in thread: David Greaves: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]