Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices

To: Bastian Blank <waldi@debian.org>, 342455@bugs.debian.org
Subject: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
From: Raul Miller <moth.debian@gmail.com>
Date: Fri, 16 Dec 2005 14:43:29 -0500
Message-id: <[🔎] d0461dbe0512161143m48f3b9adt5b8d99170a09832f@mail.gmail.com>
Reply-to: moth@debian.org, 342455@bugs.debian.org
In-reply-to: <[🔎] 20051216130838.GA26196@wavehammer.waldi.eu.org>
References: <[🔎] 20051207225054.GA1021@whinlatter.ukfsn.org> <[🔎] d0461dbe0512111347r77ebec8p3f8389299bd730b9@mail.gmail.com> <[🔎] 17310.61141.261977.637517@davenant.relativity.greenend.org.uk> <[🔎] 20051214100007.GA31043@wavehammer.waldi.eu.org> <[🔎] 17312.9253.155145.637420@davenant.relativity.greenend.org.uk> <[🔎] 20051216130838.GA26196@wavehammer.waldi.eu.org>

On 12/16/05, Bastian Blank <waldi@debian.org> wrote:
> On Wed, Dec 14, 2005 at 01:54:45PM +0000, Ian Jackson wrote:
> > Are you saying that the current default permissions on (eg) /dev/hda*
> > are insecure and therefore wrong ?
>
> Yes, I overwrite them on my machines.

And what is your reason for being unwilling to use the same procedure
on devmapper disks?

Do you believe that debian should deliver a patchwork collection of
administrative decisions, such that every time a new package is
installed a new set of administrative policies must be learned and
new procedures must be adopted by the users?

Personally, I'm using a system where the only way to obtain root access
is to log in as root -- there's no privileges gained through suid binaries.
Perhaps you'd like to use some significant packages configured this way
since it fixes something I consider to be a security problem?

Note also that your inconsistency is an inconsistency.  You've not
fixed the "problem" in all packages, only one package.  You've not
proposed anything to the community in general which addresses this
issue.  Instead, you've created problems for people without really
improving the security of debian systems in general.

This is a good idea?

Why?

What good thing have you accomplished?

Thanks,

--
Raul

Reply to:

Follow-Ups:
- Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Bastian Blank <waldi@debian.org>

References:
- tech-ctte: Ownership and permissions of device mapper block devices
  - From: Roger Leigh <rleigh@debian.org>
- Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Raul Miller <moth.debian@gmail.com>
- Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Ian Jackson <ian@davenant.greenend.org.uk>
- Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Bastian Blank <waldi@debian.org>
- Re: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Ian Jackson <ian@davenant.greenend.org.uk>
- Re: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
  - From: Bastian Blank <waldi@debian.org>

Prev by Date: Re: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
Next by Date: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
Previous by thread: Re: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
Next by thread: Bug#342455: tech-ctte: Ownership and permissions of device mapper block devices
Index(es):
- Date
- Thread