Re: GNOME 2.6 and /dev/pmu

To: Michael Schmitz <schmitz@opal.biophys.uni-duesseldorf.de>
Cc: Michel Dänzer <daenzer@debian.org>, Lucas Moulin <lucas@brebis.org>, "debian-powerpc@lists.debian.org" <debian-powerpc@lists.debian.org>
Subject: Re: GNOME 2.6 and /dev/pmu
From: Benjamin Herrenschmidt <benh@kernel.crashing.org>
Date: Wed, 21 Apr 2004 22:36:47 +1000
Message-id: <[🔎] 1082551006.2078.75.camel@gaston>
In-reply-to: <[🔎] Pine.LNX.4.44.0404191050400.22153-100000@opal.biophys.uni-duesseldorf.de>
References: <[🔎] Pine.LNX.4.44.0404191050400.22153-100000@opal.biophys.uni-duesseldorf.de>

> Assuming /dev/pmu is user writable by default is clearly incorrect.
> gnome-settings-daemon should run suid root, or fix /dev/pmu permissions at
> install time. Or use fblevel (suid root) to manipulate backlight. IMHO
> world writeable /dev/pmu constitutes too high a risk to consider the
> second option. Having gnome-settings-daemon run suid root might even be
> worse; use sgid and a special group perhaps?
> 
> Please report this bug upstream (to the Gnome maintainers, or the Gnome
> team).

World writeable /dev/pmu isn't that bad. sleep is controlled by
CAP_SYS_ADMIN anyway, so you can only "listen" to PMU events and
control the backlight. So the worst thing a malign user can do is
switch your backlight off ... 

Unlike /dev/adb which allows to send PMU commands :) I know it's not
very consistent, most of that is historical stuff and needs to be
reworked. Help welcome :)

Ben.

Reply to:

Follow-Ups:
- Re: GNOME 2.6 and /dev/pmu
  - From: Brad Boyer <flar@allandria.com>

References:
- Re: GNOME 2.6 and /dev/pmu
  - From: Michael Schmitz <schmitz@opal.biophys.uni-duesseldorf.de>

Prev by Date: Re: ALSA not working in 2.6.5 Kernel (PB G4 1G)
Next by Date: Solved (Re: 2.6.5-rc3-ben0 freezes on old iBook)
Previous by thread: Re: GNOME 2.6 and /dev/pmu
Next by thread: Re: GNOME 2.6 and /dev/pmu
Index(es):
- Date
- Thread