1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA256 |
3 |
|
4 |
On 05/20/2012 07:22 PM, Dan Douglas wrote: |
5 |
|
6 |
> I'd put money on there not being a single admin who has ever used |
7 |
> the games group to control access to games. Games really have no |
8 |
> business being on a system where anything like that is a |
9 |
> requirement to begin with. |
10 |
We (students council) use pam_ldap for users and primary groups and |
11 |
pam_group w/ /etc/security/group.conf for secondary groups like |
12 |
video,sound,games. |
13 |
|
14 |
We actually considered restricting the games group to certain login |
15 |
times (i.e. after 18 pm ) to prevent our fellow students from gaming |
16 |
during office hours, but that just lead to long time sessions |
17 |
over-night. Since group memberships are evaluated on session creation. |
18 |
|
19 |
I can imagine some multi-user setups (parents/children) were some user |
20 |
shouldn't play games-fps/* at all. |
21 |
But who actually shares a computer these days. |
22 |
|
23 |
One real benefit of extra groups is some chmod g+s hack for e.g. skype |
24 |
in combination with firewall rules restricting outbound connections. |
25 |
http://soup.xmw.de/post/151673185/Restricting-Skype-on-Gentoo |
26 |
|
27 |
Have a nice day ... |
28 |
|
29 |
- -- |
30 |
Gentoo Dev |
31 |
http://xmw.de/ |
32 |
-----BEGIN PGP SIGNATURE----- |
33 |
Version: GnuPG v2.0.17 (GNU/Linux) |
34 |
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ |
35 |
|
36 |
iF4EAREIAAYFAk+5VCgACgkQknrdDGLu8JB8SwD+JARCPBmK13Sl2/n3dsWWx/8p |
37 |
LBH6j18YbfD1+IWpXaUA/iWCgTS3TI78kSTwe0hnASc+7wTygiWvIcxlPmcv9LtQ |
38 |
=XXxi |
39 |
-----END PGP SIGNATURE----- |