From mboxrd@z Thu Jan 1 00:00:00 1970 From: Bill Nottingham Date: Fri, 27 Jan 2006 17:33:00 +0000 Subject: Re: [Libusb-devel] udev craze: need /dev/bus/usb rationale Message-Id: <20060127173300.GC29542@devserv.devel.redhat.com> List-Id: References: <20060126094517.GA4063@bode.aurel32.net> In-Reply-To: <20060126094517.GA4063@bode.aurel32.net> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: linux-hotplug@vger.kernel.org Olivier Blin (oblin@mandriva.com) said: > David Zeuthen writes: > > > On Fri, 2006-01-27 at 12:56 +0100, Olivier Blin wrote: > >> Couldn't we use dynamic groups instead of ACLs? > >> This would avoid running a tool to update ACLs at each device "add", > >> and require group updates only at user login/logout. > > > > Sure you can, but many agree that it's fundamentally insecure - once > > member of a group, always member of a group... > > Not if members of the groups are updated at user login/logout, what's > the problem with that? Log in, added to group, copy shell, add setgid bit... Bill ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnk&kid3432&bid#0486&dat1642 _______________________________________________ Linux-hotplug-devel mailing list http://linux-hotplug.sourceforge.net Linux-hotplug-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/linux-hotplug-devel