From owner-freebsd-scsi  Fri Dec 28  6:20:19 2001
Delivered-To: freebsd-scsi@freebsd.org
Received: from sax.sax.de (sax.sax.de [193.175.26.33])
	by hub.freebsd.org (Postfix) with ESMTP id 3E55737B41E
	for <freebsd-scsi@freebsd.org>; Fri, 28 Dec 2001 06:20:14 -0800 (PST)
Received: (from uucp@localhost)
	by sax.sax.de (8.9.3/8.9.3) with UUCP id PAA14766;
	Fri, 28 Dec 2001 15:20:12 +0100 (CET)
Received: (from j@localhost)
	by uriah.heep.sax.de (8.11.6/8.11.6) id fBSE6Eo49620;
	Fri, 28 Dec 2001 15:06:14 +0100 (MET)
	(envelope-from j)
Date: Fri, 28 Dec 2001 15:06:14 +0100 (MET)
Message-Id: <200112281406.fBSE6Eo49620@uriah.heep.sax.de>
Mime-Version: 1.0
X-Newsreader: knews 1.0b.1
Reply-To: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch)
Organization: Private BSD site, Dresden
X-Phone: +49-351-2012 669
X-PGP-Fingerprint: DC 47 E6 E4 FF A6 E9 8F  93 21 E0 7D F9 12 D6 4E
References: <1009544598.385.0.camel@twoflower>
From: j@uriah.heep.sax.de (Joerg Wunsch)
Subject: Re: Allow users to write cds
X-Original-Newsgroups: local.freebsd.scsi
To: freebsd-scsi@freebsd.org
Cc: Jan.Stocker@t-online.de
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-scsi@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-scsi.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-scsi>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-scsi>
X-Loop: FreeBSD.org

Jan.Stocker@t-online.de (Jan Stocker) wrote:

> But if you do, everything (including all hds) are
> accessable?

Yes, it is.  The bad news: circumventing this would require writing a
low-level device driver for CD-R devices (so you could use regular
device permissions to maintain access rights).  We used to have one
(for very ancient CD-R drives, years ago when there wasn't an
established standard for those devices).  Unfortunately, the author of
cdrecord has the opinion that his way of doing things is the best one
on earth, so he certainly won't ever write us a device driver for
CD-Rs.  Thus it needs a person with good motivation and enough time to
do it.

And well, while cdrecord claims in its man page that it were safe to
run setuid root, people have seen it dumping core, too...  /I/
wouldn't trust it for setuid.  You have to decide for yourself.

-- 
cheers, J"org               .-.-.   --... ...--   -.. .  DL8DTL

http://www.sax.de/~joerg/                        NIC: JW11-RIPE
Never trust an operating system you don't have sources for. ;-)

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-scsi" in the body of the message