Bug#31864: Should programs that access /dev/* be SGID?

To: Hwei Sheng TEOH <hsteoh@cs.toronto.edu>, 31864@bugs.debian.org
Subject: Bug#31864: Should programs that access /dev/* be SGID?
From: rjk@greenend.org.uk
Date: 15 Jan 1999 00:06:36 +0000
Message-id: <[🔎] wwvu2xtqu0j.fsf@sfere.greenend.org.uk>
Reply-to: rjk@greenend.org.uk, 31864@bugs.debian.org
In-reply-to: Hwei Sheng TEOH's message of "Thu, 14 Jan 1999 14:32:02 GMT"
References: <m2n.s.100nFu-000BrS@chiark.greenend.org.uk>

Hwei Sheng TEOH <hsteoh@cs.toronto.edu> writes:

> Package: general
> Severity: wishlist
> 
> I noticed that a lot of packages that access devices, such as CD players,
> audio players, etc., are denied permission to access the relevant devices in
> /dev/ when not run as root.

That's correct.
 
> Perhaps such programs should be SGID to whatever group that device
> is assigned? For example, since /dev/cdrom is read-writable by group
> 'disk', a program, say cdplay, can be SGID to 'disk' so that it can
> be executed by normal users. (This is what I've done on my system so
> that I don't have to su to root all the time, or make binaries SUID
> root unnecessarily).

The idea is that users who are permitted to access the CDROM are put
into group disk.  If all users should be able to access it, then all
users must be put into the relevant group.

-- 
http://www.greenend.org.uk/rjk/

Reply to:

Follow-Ups:
- Bug#31864: Should programs that access /dev/* be SGID?
  - From: Wichert Akkerman <wakkerma@cs.leidenuniv.nl>

Prev by Date: Re: mirror list / contact @ debian ?
Next by Date: Debian-based PPP Net Connector version 1.0 released
Previous by thread: Re: Should programs that access /dev/* be SGID?
Next by thread: Bug#31864: Should programs that access /dev/* be SGID?
Index(es):
- Date
- Thread