Re: Permission policy

To: debian-devel@lists.debian.org
Subject: Re: Permission policy
From: Radovan Garabik <garabik@melkor.dnp.fmph.uniba.sk>
Date: Thu, 16 Mar 2000 10:58:40 +0100
Message-id: <[🔎] 20000316105840.A14237@melkor.dnp.fmph.uniba.sk>
In-reply-to: <[🔎] 20000316014322.A12134@lina.inka.de>; from lists@lina.inka.de on Thu, Mar 16, 2000 at 01:43:22AM +0100
References: <[🔎] 38CF7E41.86068BA0@zeus.ph1.uni-koeln.de> <[🔎] 20000316014322.A12134@lina.inka.de>

On Thu, Mar 16, 2000 at 01:43:22AM +0100, Bernd Eckenfels wrote:
> On Wed, Mar 15, 2000 at 01:12:49PM +0100, Volker Ossenkopf wrote:
...

> 
> BTW: there is a idea for settig groups for console access to devices
> like cdrom, floppy, sound, mic, cam... so each user who logs into the
> sonsole will get added to that groups, then your program does not need to be
> sgid anyrthing, which is bad anyway since everybody even on networked
> terminal could start it.

I am by setting all linux installations this way:
I add this line to /etc/security/group.conf:
login;tty?|tty??&!ttyp*;*;Al0000-2400;floppy, audio
and configure pam to use it.


-- 
 -----------------------------------------------------------
| Radovan Garabik http://melkor.dnp.fmph.uniba.sk/~garabik/ |
| __..--^^^--..__    garabik @ melkor.dnp.fmph.uniba.sk     |
 -----------------------------------------------------------
Antivirus alert: file .signature infected by signature virus.
Hi! I'm a signature virus! Copy me into your signature file to help me spread!

Reply to:

Follow-Ups:
- Re: Permission policy
  - From: ruud@ruud.org (Ruud de Rooij)

References:
- Permission policy
  - From: Volker Ossenkopf <ossk@zeus.ph1.uni-koeln.de>
- Re: Permission policy
  - From: Bernd Eckenfels <lists@lina.inka.de>

Prev by Date: Re: realplayer installer and frozen
Next by Date: Re: Permission policy
Previous by thread: Re: Permission policy
Next by thread: Re: Permission policy
Index(es):
- Date
- Thread