Re: ide-cd problems

From: Alexander E. Patrakov
Date: Sat Jul 31 2004 - 23:10:16 EST

Next message: Zwane Mwaikambo: "Re: 2.6.8-rc2-mm1"
Previous message: Lee Revell: "Re: [Jackit-devel] Re: Statistical methods for latency profiling"
In reply to: Zinx Verituse: "Re: ide-cd problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Zinx Verituse wrote:

I don't believe command filtering is neccessary, since all of the
ide-cd ioctls are still there (ioctls that allow playing, reading, etc)
Only the SG_IO ioctl itself would have to be checked (i.e., not each
individual command available with SG_IO, just the overall ioctl itself,
categorizing all of SG_IO more or less as raw IO. If this isn't doable
with the current design, then the ide-cd interface should at least be
very conspicuously documented as being extremely insecure as far as
"read" access is concerned, as I know I wouldn't expect users to be able
to overwrite my drive's firmware simply by granting the read access.

Remember that it is still possible to write CDs through ide-cd in 2.4.x using some pre-alpha code in cdrecord:

cdrecord dev=ATAPI:1,1,0 image.iso

--
Alexander E. Patrakov

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Zwane Mwaikambo: "Re: 2.6.8-rc2-mm1"
Previous message: Lee Revell: "Re: [Jackit-devel] Re: Statistical methods for latency profiling"
In reply to: Zinx Verituse: "Re: ide-cd problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]