From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from [69.77.167.62] (helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1KnWBe-0006Nv-20 for garchives@archives.gentoo.org; Wed, 08 Oct 2008 10:22:34 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 388EFE05C7; Wed, 8 Oct 2008 10:22:31 +0000 (UTC) Received: from iron02.fraunhofer.de (iron02.fraunhofer.de [153.96.1.56]) by pigeon.gentoo.org (Postfix) with ESMTP id ED0F5E05C7 for ; Wed, 8 Oct 2008 10:22:30 +0000 (UTC) Received: from pluto.fokus.fraunhofer.de ([195.37.77.164]) by iron02.fraunhofer.de with ESMTP/TLS/DHE-RSA-AES256-SHA; 08 Oct 2008 12:22:29 +0200 Received: from EXCHSRV.fokus.fraunhofer.de (bohr [10.147.9.231]) by pluto.fokus.fraunhofer.de (8.13.7/8.13.7) with SMTP id m98AMTH7020058 for ; Wed, 8 Oct 2008 12:22:29 +0200 (MEST) Received: from rigel ([10.147.65.195]) by EXCHSRV.fokus.fraunhofer.de with Microsoft SMTPSVC(6.0.3790.3959); Wed, 8 Oct 2008 12:22:29 +0200 Date: Wed, 08 Oct 2008 12:22:25 +0200 From: Joerg.Schilling@fokus.fraunhofer.de (Joerg Schilling) To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] cdrecord - devname - was burning a dvd+r dl... Message-ID: <48ec89e1.JjDGmngYioNT9J1Z%Joerg.Schilling@fokus.fraunhofer.de> References: <48EB8304.7040004@konstantinhansen.de> <48eb8548.M8Ukbx5LjaWcIk2a%Joerg.Schilling@fokus.fraunhofer.de> <48EBCA98.2050006@konstantinhansen.de> <48EBCF12.9070603@gmail.com> <48ec7257.1BfxAMI7EMK1HEOU%Joerg.Schilling@fokus.fraunhofer.de> <48EC7A46.4050807@gmail.com> In-Reply-To: <48EC7A46.4050807@gmail.com> User-Agent: nail 11.22 3/20/05 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 X-OriginalArrivalTime: 08 Oct 2008 10:22:29.0181 (UTC) FILETIME=[C4633ED0:01C9292F] Content-Transfer-Encoding: quoted-printable X-Archives-Salt: b3496734-8907-4b98-a9ef-fb9461c31d6a X-Archives-Hash: 02e247a05ff40d7d879aac93fc9f1f15 Dale wrote: > > In Autumn 2004 this bug was not fixed but the SCSI Linux kernel inter= face > > was changed in an incompatible way. Now _some_ SCSI commands work as = non-root. > > > > SCSI is a try and error protocol and cdrecord checks which commands a= re working. > > If it is possible to burn with the limuted non-root command set, it _= may_ work > > but there is a high risk for buffer underruns. In this case cdrecord = believes=20 > > that you own a really dumb burner that does not support most of the n= ice=20 > > features.... > > > > J=F6rg > So that I have a better understanding of this, if he is not a member of > the cd/cdrw group then the command would still work as a user? Since the original security bug hass not been fxed, you are able so send a limit set of SCSI commands if you are able to open the device read-only= . Libscg opens the devices read/write, so the only effect of such a grup=20 membership is that cdrecord is able to open the device. J=F6rg --=20 EMail:joerg@schily.isdn.cs.tu-berlin.de (home) J=F6rg Schilling D-13353 = Berlin js@cs.tu-berlin.de (uni) =20 schilling@fokus.fraunhofer.de (work) Blog: http://schily.blogs= pot.com/ URL: http://cdrecord.berlios.de/private/ ftp://ftp.berlios.de/pub/schil= y