| 1 |
Am Wed, 4 Sep 2013 06:01:48 +0000 (UTC) |
| 2 |
schrieb Duncan <1i5t5.duncan@×××.net>: |
| 3 |
|
| 4 |
[...] |
| 5 |
> So what's the big deal? They're splitting the formerly single-device KMS/ |
| 6 |
> DRM into two separate devices, one of which will be render/compute-only, |
| 7 |
> and thus require lower privs -- classic Unix user/group file permissions, |
| 8 |
> not the root or CAP_SYS_ADMIN that the current device requires, and a |
| 9 |
> second that will be mode-setting/display-controller only, accessible via |
| 10 |
> clone from the current DRM-control node (which is currently unused). |
| 11 |
> Because no new resources are created -- they're simply cloned from the |
| 12 |
> existing control node, required privs here can be reduced as well. The |
| 13 |
> practical effect of the latter will be another step toward allowing user- |
| 14 |
> priv-only X (and wayland). |
| 15 |
> |
| 16 |
> But the former is bigger news in srovider. For just $5 per month, you can |
| 17 |
> get yourself a Cloud server with 512 MB of RAM, 20 GB super-fast SSD, |
| 18 |
> free snapshots, plus backups for a minimal fee. All via a simple |
| 19 |
> graphical interface. |
| 20 |
> |
| 21 |
> And by signing up with this referral link, you can help support this |
| 22 |
> website. |
| 23 |
> |
| 24 |
> If you are reading this, your ad could also be occupying this space. |
| 25 |
> Contact us to make it happen. |
| 26 |
> 2 Comments |
| 27 |
|
| 28 |
Woah! Is it normal for ads to be placed smack in the middle of your emails? |
| 29 |
I've heard of ads inserted at the top or bottom of HTML-Emails, but this is |
| 30 |
just plain ridiculous. |
| 31 |
|
| 32 |
And if that wasn't bad enough, it appears to have taken part of the next |
| 33 |
paragraph, too ("ome ways..."). |
| 34 |
|
| 35 |
> ome ways, as it means any app running as a user/group with suitable file |
| 36 |
> permissions will be able to open compute nodes, no root or CAP_SYS_ADMIN |
| 37 |
> required. That will in turn dramatically open up the possibilities for |
| 38 |
> "ordinary application" use of compute-nodes, thus allowing pretty much |
| 39 |
> any app to use those resources, instead of forcing the severe privilege |
| 40 |
> restrictions currently needed to avoid huge security issues, currently. |
| 41 |
> |
| 42 |
[...] |
| 43 |
|
| 44 |
-- |
| 45 |
Marc Joliet |
| 46 |
-- |
| 47 |
"People who think they know everything really annoy those of us who know we |
| 48 |
don't" - Bjarne Stroustrup |
Archives