From owner-freebsd-scsi  Sun Jul 26 19:07:07 1998
Return-Path: <owner-freebsd-scsi@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id TAA18583
          for freebsd-scsi-outgoing; Sun, 26 Jul 1998 19:07:07 -0700 (PDT)
          (envelope-from owner-freebsd-scsi@FreeBSD.ORG)
Received: from orion.aye.net (orion.aye.net [206.185.8.9])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id TAA18564
          for <freebsd-scsi@FreeBSD.ORG>; Sun, 26 Jul 1998 19:06:59 -0700 (PDT)
          (envelope-from rabtter@orion.aye.net)
Received: (qmail 5156 invoked by uid 3759); 27 Jul 1998 02:07:45 -0000
Date: Sun, 26 Jul 1998 22:07:45 -0400 (EDT)
From: "B. Richardson" <rabtter@aye.net>
Reply-To: "B. Richardson" <rabtter@aye.net>
To: Cory Kempf <ckempf@enigami.com>
cc: freebsd-scsi@FreeBSD.ORG
Subject: Re: non-root pass, symlinks to pass fail
In-Reply-To: <x7sojo6sbj.fsf@singularity.enigami.com>
Message-ID: <Pine.SGI.3.95.980726214851.27065A-100000@orion.aye.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-scsi@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org




On 26 Jul 1998, Cory Kempf wrote:

> If I attempt to use cam_scsi_open() on one of the /dev/pass devices as a
> non-root user, it failes with errno 13 (access).
> 
> Interestingly enough, though, ls -l /dev/pass* produces:
> 
> 0 brw-rw-rw-  1 root  operator  200,   0 Jul 14 16:50 /dev/pass0
> 0 brw-rw-rw-  1 root  operator  200,   1 Jul 14 16:50 /dev/pass1
> 0 brw-rw-rw-  1 root  operator  200,   2 Jul 14 16:50 /dev/pass2
> 0 brw-rw-rw-  1 root  operator  200,   3 Jul 14 16:50 /dev/pass3
> 0 brw-rw-rw-  1 root  operator  200,   4 Jul 14 16:50 /dev/pass4
> 
> As I chmod'd things to 666 when I first got the error.
> 
> Why can't I open a pass device as a non-root user?
>

Could a non-root user hose your system via these if he/she had the
access you desire?
 
> 
> On what might be a related note, I created a symlink (i.e. ln -s) to a 
> pass device.  cam_scsi_open() refuses to open that either.  Why?

Picture this. A user creates a symlink to /etc/spwd.db. Should said user
be able to set appropriate permissions on the link and then update
/etc/spwd.db?

> 
> And, in both cases, how do I fix?

Neither are broke. Be root.

> 
> Thanks,
> 
> +C
> 
> -- 
> Thinking of purchasing RAM from the Chip Merchant?  
> Please read this first: <http://www.enigami.com/~ckempf/chipmerchant.html>
> 
> Cory Kempf                Macintosh / Unix Consulting & Software Development
> ckempf@enigami.com        <http://www.enigami.com/~ckempf/>
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-scsi" in the body of the message
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-scsi" in the body of the message