LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for February 16, 2012

Book review: Open Advice

Linux support for ARM big.LITTLE

LWN.net Weekly Edition for February 9, 2012

XBMC 11 "Eden"

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

CD burning

CD burning

Posted Jul 11, 2006 22:27 UTC (Tue) by dlang (✭ supporter ✭, #313)
In reply to: Survey: Linux kernel quality by Lovechild
Parent article: Survey: Linux kernel quality

as noted above, the vunerability was that anyone on the system could send commands to any drive to do anything to it (completely defeating security, along with potentially destroying the hardware)

the change was to eliminate this capability for non-root users (root is allowed to destroy your hardware :-)

the fix for non-root users is to set your burning software suid root. then it runs as root and is allowed to do whatever it wants.

what more are you looking for?

there has been talk about creating filters in the kernel that would allow burning specific commands but not allow other 'dangerous' commands, but nobody who is willing to talk knows what commands are nessasary (this is made even more difficult by the fact that some of the nessasary commands and the dangerous commands are, in fact, the same command with different parameters)

David Lang

(Log in to post comments)

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds