Mailinglist Archive: opensuse-bugs (8080 mails)

< Previous Next >
[Bug 210899] removal of CONFIG_USB_DEVICEFS breaks applications
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Fri, 2 Feb 2007 04:42:15 -0700 (MST)
  • Message-id: <20070202114215.18139FC1@xxxxxxxxxxxxxxxxxxxxxx>

------- Comment #40 from rschiele@xxxxxxxxx 2007-02-02 04:42 MST -------
BTW: Actually the security argument does not make any sense at all because in
practice there are two classes of users:

1. Users that _don't_ run applications using /proc/bus/usb/devices. Those
users will not mount /proc/bus/usb if it is disabled by default and then there
is no issue for them.

2. Users that _do_ run such applications. Those users are forced now to use a
custom kernel. When they do so they have again USBDEVFS with all its security
concerns and additionally might miss the official kernel security updates
provided by Novell. Because of that reasons those users run an even _more_
insecure system.

Trying to _enforce_ security that way is pointless anyway. If you were
consequent in that way you had to patch chmod from the distribution to disallow
setting the SUID bit because it is a security risk if someone uses this to set
the SUID bit on arbitrary binaries.

Configure bugmail:
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.

< Previous Next >