On 8/10/06, Craig Jackson <[EMAIL PROTECTED]> wrote:
times since then and each time I have needed to append , MODE="0666" to each rule in the /etc/udev/rules.d/15-alsa.rules file in order to allow all the unprivileged users access to the sound device. Could we make this change? I don't see any reason to lock down the sound card, unless someone knows of a vulnerability I am unaware of.
If you have raw access to the physical device, you can basically do what you want to it. But I don't think it'll be likely that this is changed. All other /dev nodes are attempted to be grouped or given reduced permissions. It's the same reason we add the cdrom, video and usb groups. Having raw access to a device is a privilege.
I could also see allowing group-based write access to the device, but again it is not mentioned anywhere that I could see how to accomplish this.
Devices are created with default permissions of 0660 with current udev. So, BLFS just tacks the audio group onto these devices. Any user in the audio group will have access. If you want to override this security feature, you can just change the LFS udev rules to make everything mode 0666. Or, add all your users to the root group. -- Dan -- http://linuxfromscratch.org/mailman/listinfo/blfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
