| 1 |
Mike Frysinger schrieb: |
| 2 |
> along these lines, why is cdrtools set*id ? if we have a "cdrom" group, and |
| 3 |
> we assign our cdroms/dvdroms to that group, then we already have access |
| 4 |
> control in place and can skip the set*id. |
| 5 |
> -mike |
| 6 |
From the manpage, "In order to be able to use the SCSI transport |
| 7 |
subsystem of the OS, run at highest priority and lock itself into core |
| 8 |
cdrecord either needs to be run as root, needs to be installed suid root |
| 9 |
or must be called via RBACs pfexec mechanism." |
| 10 |
|
| 11 |
I guess with the advent of burnfree technology, the priority and locking |
| 12 |
into memory have become less important. |
| 13 |
|
| 14 |
The cdrom group will give access to /dev/sr* but not the associated /dev/sg* |
| 15 |
|
| 16 |
|
| 17 |
Best regards, |
| 18 |
Chí-Thanh Christopher Nguyễn |
Archives