Re: Who wants to test cracklinux??

From: Arjan van de Ven
Date: Sun Apr 02 2006 - 18:40:00 EST

Next message: Dan Aloni: "Re: sata_mv: module reloading doesn't work"
Previous message: Roland Dreier: "Re: updated InfiniBand 2.6.17 merge plans"
In reply to: Ben Ford: "Re: Who wants to test cracklinux??"
Next in thread: Alan Cox: "Re: Who wants to test cracklinux??"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 2006-04-02 at 15:34 -0700, Ben Ford wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Pavel Machek wrote:
> > Hi!
> >> I've written a small kernel module & shared object for kernel 2.6 to
> >> enable the following for normal users:
> >>
> >> - inb()/outb()... via a wrapper function
> > ioperm() does that already, no? You mean, you enable it for non-root,
> > too? That's security hole.
>
> My OS development classes have a lab of machines that run entirely as
> root just for these reasons. I think it's valid to allow these
> operations as non-root in certain situations. It is better than
> running *everything* as root, no?

is there any difference? I mean... if you can outb you for all intents
and purposes are root anyway ;) (like you can overwrite any memory in
the system etc etc)

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Dan Aloni: "Re: sata_mv: module reloading doesn't work"
Previous message: Roland Dreier: "Re: updated InfiniBand 2.6.17 merge plans"
In reply to: Ben Ford: "Re: Who wants to test cracklinux??"
Next in thread: Alan Cox: "Re: Who wants to test cracklinux??"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]