Re: SG_IO and security

From: Linus Torvalds
Date: Thu Aug 12 2004 - 11:41:41 EST

Next message: Jakub Vana: "Re: x86 - Realmode BIOS and Code calling module"
Previous message: Nuno Ferreira: "Re: Process hangs copying large file to cifs"
In reply to: Alan Cox: "SG_IO and security"
Next in thread: Linus Torvalds: "Re: SG_IO and security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 12 Aug 2004, Alan Cox wrote:
>
> Since the entire thread seems to have died again unresolved I'd suggest
> the following patch should get into 2.6.8 so that anyone with read
> access to any block device cannot issue arbitary scsi commands to it
> (like writes or firmware erase)

Hmm.. This still allows the old "junk" commands (SCSI_IOCTL_SEND_COMMAND).

I'll add that too.

Linus
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jakub Vana: "Re: x86 - Realmode BIOS and Code calling module"
Previous message: Nuno Ferreira: "Re: Process hangs copying large file to cifs"
In reply to: Alan Cox: "SG_IO and security"
Next in thread: Linus Torvalds: "Re: SG_IO and security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]