1 |
On 01/28/2012 02:14 AM, Mike Frysinger wrote: |
2 |
> hmm, i wonder why mount.nfs is set*id. if we require everyone to use `mount`, |
3 |
> there's no need for `mount.nfs` to be set*id. someone want to point out |
4 |
> something obvious that i'm missing before i adjust the nfs-utils package ? |
5 |
> |
6 |
> along these lines, why is cdrtools set*id ? if we have a "cdrom" group, and |
7 |
> we assign our cdroms/dvdroms to that group, then we already have access |
8 |
> control in place and can skip the set*id. |
9 |
> -mike |
10 |
|
11 |
cdrtools can't probe the drives without the binary being setuid, or the |
12 |
user belonging to the 'disk' group (and even that is not enough in some |
13 |
cases if the permissions vary) |