This one time, at band camp, Marco d'Itri said: > On Mar 17, Stephen Gran <sgran@debian.org> wrote: > > > That's the first I've heard that argument - of course you don't give > This is weird, because it has been around for quite a long time. > E.g. cp /bin/bash .; chgrp audio bash; chmod g+s bash Since you can't do that unless you're already in group audio, I'm not sure what you're trying to say. The part of my mail you cut did say that you don't give untrusted users access to these groups. > > untrusted users access to hardware, but we've always managed access to > > devices with group membership (lp, dialout, etc). Are you proposing > > that should change? > The rest of the Linux world is: > http://dualstack.ipv6-exp.l.google.com/search?q=policykit . I am less than impressed with more "solutions" that depend on dbus. -- ----------------------------------------------------------------- | ,''`. Stephen Gran | | : :' : sgran@debian.org | | `. `' Debian user, admin, and developer | | `- http://www.debian.org | -----------------------------------------------------------------
Attachment:
signature.asc
Description: Digital signature