Re: ide-cd problems

From: Alan Cox
Date: Thu Aug 05 2004 - 12:01:42 EST

Next message: Johannes Stezenbach: "Re: Tuning (stv0299.ko) with SkyStar2/DVB not working with 2.6.8-rc* anymore"
Previous message: OGAWA Hirofumi: "Re: [PATCH][2.6] first/next_cpu returns values > NR_CPUS"
In reply to: Jens Axboe: "Re: ide-cd problems"
Next in thread: Jens Axboe: "Re: ide-cd problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mer, 2004-08-04 at 06:01, Jens Axboe wrote:
> Absolutely not. I've already outlined why in my previous mails I don't
> want to see anything like this, and this patch is even worse than
> filtering. Additionally, you risk breaking existing programs.

Existing broken programs.

Once you do filtering so you don't need CAP_SYS_RAWIO to lob some
commands at a device that becomes the place to enforce sensible policies
because the filter knows what is "read" and what is "write" so it can do
different checks for say "eject" (read) "write" (write) and "erase
firmware" (raw I/O)

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Johannes Stezenbach: "Re: Tuning (stv0299.ko) with SkyStar2/DVB not working with 2.6.8-rc* anymore"
Previous message: OGAWA Hirofumi: "Re: [PATCH][2.6] first/next_cpu returns values > NR_CPUS"
In reply to: Jens Axboe: "Re: ide-cd problems"
Next in thread: Jens Axboe: "Re: ide-cd problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]