Re: parted is ALMOST suitable

To: debian-user@lists.debian.org
Subject: Re: parted is ALMOST suitable
From: Brian <ad44@cityscape.co.uk>
Date: Wed, 9 Nov 2016 17:38:01 +0000
Message-id: <[🔎] 20161109173801.GE22496@copernicus.org.uk>
In-reply-to: <[🔎] jwvmvh9oaeo.fsf-monnier+linux.debian.user@gnu.org>
References: <[🔎] 58206F86.3090304@cloud85.net> <[🔎] 20161107122018.hqrvkgqemjomwj75@gnurante> <[🔎] 582075A1.9070809@cloud85.net> <[🔎] 20161107141951.boavpcc74fyy7xeb@gnurante> <[🔎] 1b1syn9vyr.fsf@pfeifferfamily.net> <[🔎] 1bh97hvp82.fsf@pfeifferfamily.net> <[🔎] 3A46B8AE-468C-402C-AFC2-7C3F7DADC82C@gmail.com> <[🔎] jwv7f8drch3.fsf-monnier+linux.debian.user@gnu.org> <[🔎] 08112016203131.97e50cadd844@desktop.copernicus.org.uk> <[🔎] jwvmvh9oaeo.fsf-monnier+linux.debian.user@gnu.org>

On Tue 08 Nov 2016 at 17:54:41 -0500, Stefan Monnier wrote:

> >> > Futzing with partitions is the admin's job.
> >> Could be, but it's not (g)parted's job to enforce these kinds of rules:
> >> that's what Unix permissions (and Linux's capabilities) are for.
> >> It's OK to add a warning and prompt the user to make sure he really
> >> means to do that, but there's no point *preventing* the user from
> >> shooting his own foot with this tool if he can do it with other
> >> tools anyway.
> 
> > Users here get no opportunity to shoot themselves or anyone else in the
> > foot.  Access to raw disks is over my dead body.
> 
> So your users don't have access rights to the raw disks?
> Great! then (g)parted doesn't need to check anything since the kernel
> will do that already.
> 
> > So I do not understand your point.
> 
> The fact that it checks if the user is UID 0 is either useless (because
> the user doesn't have write access to the device anyway, as should
> usually be the case for the real physical devices connected to the
> machine) or annoying (because it doesn't give any extra security since
> the user can shoot himself in the foot with any number of other tools
> anyway).
> 
> It costs extra code with at best no benefit.

A well-made couple of points. But a user being able to shoot himself
in his own foot with other tools as a way of bolstering the argument
doesn't bear close scrutiny nowadays. Perhaps a reason for updating
the bug record to clarify what the issue is?

-- 
Brian.

Reply to:

Follow-Ups:
- Re: parted is ALMOST suitable
  - From: <tomas@tuxteam.de>

References:
- parted is ALMOST suitable
  - From: Richard Owlett <rowlett@cloud85.net>
- Re: parted is ALMOST suitable
  - From: Felipe Salvador <felipe.salvador@gmail.com>
- Re: parted is ALMOST suitable
  - From: Richard Owlett <rowlett@cloud85.net>
- Re: parted is ALMOST suitable
  - From: Felipe Salvador <felipe.salvador@gmail.com>
- Re: parted is ALMOST suitable
  - From: Joe Pfeiffer <pfeiffer@cs.nmsu.edu>
- Re: parted is ALMOST suitable
  - From: Joe Pfeiffer <pfeiffer@cs.nmsu.edu>
- Re: parted is ALMOST suitable
  - From: Glenn English <ghe2001@gmail.com>
- Re: parted is ALMOST suitable
  - From: Stefan Monnier <monnier@iro.umontreal.ca>
- Re: parted is ALMOST suitable
  - From: Brian <ad44@cityscape.co.uk>
- Re: parted is ALMOST suitable
  - From: Stefan Monnier <monnier@iro.umontreal.ca>

Prev by Date: Re: sound disappeared
Next by Date: Re: Subject=Re: Re: Third Monitor Stopped Working
Previous by thread: Re: parted is ALMOST suitable
Next by thread: Re: parted is ALMOST suitable
Index(es):
- Date
- Thread