Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices

To: Ian Jackson <ian@davenant.greenend.org.uk>
Cc: moth@debian.org, 342455@bugs.debian.org
Subject: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
From: Bastian Blank <waldi@debian.org>
Date: Wed, 14 Dec 2005 11:00:07 +0100
Message-id: <[🔎] 20051214100007.GA31043@wavehammer.waldi.eu.org>
Reply-to: Bastian Blank <waldi@debian.org>, 342455@bugs.debian.org
In-reply-to: <[🔎] 17310.61141.261977.637517@davenant.relativity.greenend.org.uk>
References: <[🔎] 20051207225054.GA1021@whinlatter.ukfsn.org> <[🔎] d0461dbe0512111347r77ebec8p3f8389299bd730b9@mail.gmail.com> <[🔎] 17310.61141.261977.637517@davenant.relativity.greenend.org.uk>

On Tue, Dec 13, 2005 at 03:55:01PM +0000, Ian Jackson wrote:
> > 1) change devmapper defaults -- patch rejected, no reason given
> Certainly I agree that the defaults should be changed.

At least in my point of view, a default is something which can be
changed easily, maybe in a config file. In this case, it is no default,
it is the value which anything gets.

> > I've also seen the suggestion that we should have a explicit technical policy
> > that block devices should default to having 660 permissions with owner root
> > and group disk.  I don't have any objections to such a policy, but I don't
> > see that solving this problem should wait on the adoption of this policy.
> Quite so.  (Modulo my comments about the exact mode, above.)

This breaks anything which wants to use group cdrom for cdrom access
without manual intervention.

> > Finally, I don't see any reasoning given for things being the way they are
> > currently.  There might be some such reason, but I'm a bit dubious --
> > if there was a good reason, why wasn't it spelled out months ago?

"Secure by default" is no reason? You can always overwrite it on
runtime.

> I agree, if we can settle my quibble about group-write.

If the upper don't apply, 666 is also a valid setting.

Bastian

-- 
Each kiss is as the first.
		-- Miramanee, Kirk's wife, "The Paradise Syndrome",
		   stardate 4842.6

Reply to:

Follow-Ups:
- Re: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Ian Jackson <ian@davenant.greenend.org.uk>
- Re: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Roger Leigh <rleigh@whinlatter.ukfsn.org>

References:
- tech-ctte: Ownership and permissions of device mapper block devices
  - From: Roger Leigh <rleigh@debian.org>
- Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Raul Miller <moth.debian@gmail.com>
- Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Ian Jackson <ian@davenant.greenend.org.uk>

Prev by Date: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
Next by Date: Re: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
Previous by thread: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
Next by thread: Re: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
Index(es):
- Date
- Thread