Re: ide-cd problems

From: Jens Axboe
Date: Sun Aug 01 2004 - 10:59:05 EST

Next message: Thomas Charbonnel: "Re: [patch] voluntary-preempt-2.6.8-rc2-M5"
Previous message: Andrea Arcangeli: "Re: secure computing for 2.6.7"
Next in thread: Horst von Brand: "Re: ide-cd problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Aug 01 2004, Alexander E. Patrakov wrote:
> Zinx Verituse wrote:
> >I don't believe command filtering is neccessary, since all of the
> >ide-cd ioctls are still there (ioctls that allow playing, reading, etc)
> >Only the SG_IO ioctl itself would have to be checked (i.e., not each
> >individual command available with SG_IO, just the overall ioctl itself,
> >categorizing all of SG_IO more or less as raw IO. If this isn't doable
> >with the current design, then the ide-cd interface should at least be
> >very conspicuously documented as being extremely insecure as far as
> >"read" access is concerned, as I know I wouldn't expect users to be able
> >to overwrite my drive's firmware simply by granting the read access.
> >
>
> Remember that it is still possible to write CDs through ide-cd in 2.4.x
> using some pre-alpha code in cdrecord:
>
> cdrecord dev=ATAPI:1,1,0 image.iso

(don't trim cc lists on linux-kernel!)

Don't ever use that interface, period. It's not just the cdrecord code
that may be alpha (I doubt it matters, it's easy to use), the interface
it uses is not worth the lines of code it occupies.

--
Jens Axboe

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Thomas Charbonnel: "Re: [patch] voluntary-preempt-2.6.8-rc2-M5"
Previous message: Andrea Arcangeli: "Re: secure computing for 2.6.7"
Next in thread: Horst von Brand: "Re: ide-cd problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]