Date: Tue, 16 Oct 2007 18:40:47 +0200 From: Alexander Leidinger <netchild@FreeBSD.org> To: John-Mark Gurney <gurney_j@resnet.uoregon.edu> Cc: Wilko Bulte <wb@freebie.xs4all.nl>, Poul-Henning Kamp <phk@phk.freebsd.dk>, src-committers@FreeBSD.org, cvs-all@FreeBSD.org, cvs-src@FreeBSD.org Subject: Re: cvs commit: src/etc Makefile sensorsd.conf src/etc/defaults rc.conf src/etc/rc.d Makefile sensorsd src/lib/libc/gen sysctl.3 src/sbin/sysctl sysctl.8 sysctl.c src/share/man/man5 rc.conf.5 src/share/man/man9 Makefile sensor_attach.9 src/sys/conf files ... Message-ID: <20071016184047.8zh3fl90gksks40c@webmail.leidinger.net> In-Reply-To: <20071015202115.GP39759@funkthat.com> References: <20071015152408.10kvgtog6cooc4wc@webmail.leidinger.net> <48258.1192460507@critter.freebsd.dk> <20071015210909.1b6b693b@deskjail> <20071015202115.GP39759@funkthat.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Quoting John-Mark Gurney <gurney_j@resnet.uoregon.edu> (from Mon, 15 =20 Oct 2007 13:21:15 -0700): > Alexander Leidinger wrote this message on Mon, Oct 15, 2007 at 21:09 +0200= : >> > >I already told you last time >> > >that the current way (access to the i2c or smbus) needs more access >> > >rights than using the userland parts of the sensors framework. >> > >> > More rights than what exactly ? >> >> One popular userland temperature/voltage reading tool (as it supports a >> lot of popular devices) is mbmon. It is currently a SUID root >> application. It is like this as it accesses the smbus and/or ISA I/O >> ports directly. If we forget the ISA I/O ports part, we could maybe >> switch to a mbmon-user, but I don't really want to have such an user be >> able to query every device on the smbus. >> >> systat and sysctl are not SUID/SGID and don't require some special >> rights in /dev. I would say this is a big difference in favour of the >> sensors framework. > > Did you completely ignore the discussion back in July? I didn't bring > it up, because someone else did, but the simple solution is a socket Have you a pointer to it? I would like to analyze why I don't remember =20 to have seen this. > like /var/run/log or /var/run/devd.pipe, that a userland daemon running > as root that has access to ISA I/O and related resources... It's > that simple... And the code doesn't exists. And when it is written, when will it be =20 bugfree enough? The sysctl way of exporting integer data already has a =20 good track record, and porting the existing lm sensor (from a project =20 which is known to take much care about security) was easier to get =20 right. The project also was not about the lm sensor (I don't go and =20 count the size for the small lm sensor now). The lm sensor was one =20 example of using it. I don't think objection to the lm sensor driver =20 should lead to removal of the framework itself. One possible reaction =20 could be to say that the lm sensor should move to ports. Bye, Alexander. --=20 http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID =3D B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID =3D 72077137 You can be replaced by this computer.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20071016184047.8zh3fl90gksks40c>