On Fri, Oct 11, 2002, Oliver Neukum <[EMAIL PROTECTED]> wrote: > > > > and even more painfully, what do you do if there's an IO error > > > during execution of the script. The only safe reaction would be a kernel > > > panic. > > > > A kernel panic should only be the result of a catastrophic system > > failure that the kernel cannot continue from. > > Unauthorised access _is_ a catastrophe.
I agree. However, the kernel only enforces the privileges. It doesn't set them. > > Failing to set permissions on a device doesn't seem like something that > > would qualify for a panic. > > Failure to set them is not a security problem. > Abstractly speaking setting permissions/ownership is handing out > priviledges. If that operation fails the system will not function properly, > but security is not compromised. > > Failure to reset permissions is quite another thing. It opens up the > possibility that access to other devices is accidentally granted. You're making the assumption that privileges don't change. I seem to recall a discussion like this in the past, but why can't we just change the permissions dynamically as the user logs in and logs out of the console? The only problem I can think of would be managing multiple users on a console. JE ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ [EMAIL PROTECTED] To unsubscribe, use the last form field at: https://lists.sourceforge.net/lists/listinfo/linux-usb-devel
