From owner-freebsd-current@FreeBSD.ORG Fri Oct 15 11:18:50 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8208516A4CE for ; Fri, 15 Oct 2004 11:18:50 +0000 (GMT) Received: from cain.gsoft.com.au (cain.gsoft.com.au [203.31.81.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8FD7943D39 for ; Fri, 15 Oct 2004 11:18:49 +0000 (GMT) (envelope-from doconnor@gsoft.com.au) Received: from inchoate.gsoft.com.au (localhost [127.0.0.1]) (authenticated bits=0) by cain.gsoft.com.au (8.12.11/8.12.10) with ESMTP id i9FBIjes077911; Fri, 15 Oct 2004 20:48:46 +0930 (CST) (envelope-from doconnor@gsoft.com.au) From: "Daniel O'Connor" To: freebsd-current@freebsd.org Date: Fri, 15 Oct 2004 20:48:35 +0930 User-Agent: KMail/1.7 References: <20041013205141.GA874@galgenberg.net> <416EE19D.50400@mac.com> <20041015100633.GA45863@cirb503493.alcatel.com.au> In-Reply-To: <20041015100633.GA45863@cirb503493.alcatel.com.au> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart8926696.L47ebNpVn2"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200410152048.44173.doconnor@gsoft.com.au> X-Spam-Score: -2.2 () IN_REP_TO,MIME_LONG_LINE_QP,PGP_SIGNATURE_2,QUOTED_EMAIL_TEXT,REFERENCES,SPAM_PHRASE_02_03,USER_AGENT X-Scanned-By: MIMEDefang 2.16 (www . roaringpenguin . com / mimedefang) cc: Peter Jeremy cc: Chuck Swiger Subject: Re: atapicam(4) as KLD? X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 15 Oct 2004 11:18:50 -0000 --nextPart8926696.L47ebNpVn2 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Fri, 15 Oct 2004 19:36, Peter Jeremy wrote: > I tend to agree. For some time, FreeBSD has been heading away from > requiring users to re-compile the kernel. If ATAPICAM can't be > (readily) turned into a module, it would seem reasonable to have it > built into GENERIC. > > Whilst we're discussing ATAPICAM, even after I make /dev/cd0[ac] mode > 666, I can't write to it as a non-root user. Does anyone know the > rationale for this and which particular EPERM is the culprit? I've > had a quick look at the source but can't see nothing leapt out. Burning to SCSI CD/DVD media isn't done like that. cdrecord et al talk to the writer directly via xpt and pass, so if you want= to=20 allow non-root users to burn CD/DVDs you need to allow them access to pass= =20 and xpt (which is pretty bad from a security point of view..) It sucks having to choose between features (growisofs, cdrecord, cdda2wav) = and=20 security (burncd) although I hear Soren has a version of the Schilly SCSI=20 library that talks to IDE devices (but I doubt you can pick and choose..) =2D-=20 Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C --nextPart8926696.L47ebNpVn2 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQBBb7IU5ZPcIHs/zowRAp23AJ9DJNvR9JNzS21VHJbYKadYDuGVOACfVDAK enlhNbmSuw3soyOz4KIMY5M= =0pAN -----END PGP SIGNATURE----- --nextPart8926696.L47ebNpVn2--