| 1 |
On 01/28/2012 02:14 AM, Mike Frysinger wrote: |
| 2 |
> hmm, i wonder why mount.nfs is set*id. if we require everyone to use `mount`, |
| 3 |
> there's no need for `mount.nfs` to be set*id. someone want to point out |
| 4 |
> something obvious that i'm missing before i adjust the nfs-utils package ? |
| 5 |
> |
| 6 |
> along these lines, why is cdrtools set*id ? if we have a "cdrom" group, and |
| 7 |
> we assign our cdroms/dvdroms to that group, then we already have access |
| 8 |
> control in place and can skip the set*id. |
| 9 |
> -mike |
| 10 |
|
| 11 |
cdrtools can't probe the drives without the binary being setuid, or the |
| 12 |
user belonging to the 'disk' group (and even that is not enough in some |
| 13 |
cases if the permissions vary) |
Archives