From owner-freebsd-current  Tue Oct  1 23:18: 8 2002
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4D89637B401
	for <current@FreeBSD.ORG>; Tue,  1 Oct 2002 23:18:07 -0700 (PDT)
Received: from mailman.zeta.org.au (mailman.zeta.org.au [203.26.10.16])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BAEE143E6E
	for <current@FreeBSD.ORG>; Tue,  1 Oct 2002 23:18:05 -0700 (PDT)
	(envelope-from bde@zeta.org.au)
Received: from bde.zeta.org.au (bde.zeta.org.au [203.2.228.102])
	by mailman.zeta.org.au (8.9.3/8.8.7) with ESMTP id QAA12663;
	Wed, 2 Oct 2002 16:17:52 +1000
Date: Wed, 2 Oct 2002 16:27:25 +1000 (EST)
From: Bruce Evans <bde@zeta.org.au>
X-X-Sender: bde@gamplex.bde.org
To: Poul-Henning Kamp <phk@critter.freebsd.dk>
Cc: Brooks Davis <brooks@one-eyed-alien.net>, <current@FreeBSD.ORG>
Subject: Re: HEADSUP! GEOM as default in 5 days... 
In-Reply-To: <46929.1033535557@critter.freebsd.dk>
Message-ID: <20021002162324.Q4432-100000@gamplex.bde.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-current.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-current>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-current>
X-Loop: FreeBSD.ORG

On Wed, 2 Oct 2002, Poul-Henning Kamp wrote:

> In message <20021002122851.K3584-100000@gamplex.bde.org>, Bruce Evans writes:
> >One reason I have no confidence in devfs is that its quality is such as
> >to get things like this wrong.  There are magic ownerships and permissions
> >in the source code for N drivers where they are hard to audit.
> >
> >The acd driver still uses the insecure mode 0644 despite this being
> >reported a few years ago.  World readability is especially insecure
> >for acd since it gives some write access via some ioctls.  E.g.,
> >everyone has permission to erase writable media.
>
> This is _not_ a DEVFS issue, this is a device driver issue.

It is a devfs issue that devfs moves things into the kernel where they
harder to control and more fatal if they are got wrong.

Bruce


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message