Date: Mon, 2 Aug 2004 05:02:36 +0200 From: Oliver Fuchs <oliverfuchs@onlinehome.de> To: freebsd-questions@freebsd.org Subject: Re: allowing cdrecord non-root Message-ID: <20040802030235.GA3005@oliverfuchs.ath.cx> In-Reply-To: <20040731222618.J41097@chylonia.3miasto.net> References: <20040731222618.J41097@chylonia.3miasto.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 31 Jul 2004, Wojciech Puchar wrote:
> how can i allow given group to be able to write cd's?
>
> in NetBSD doing (assuming group name cdrw)
>
> chgrp cdrw /dev/rcd0* /dev/cd0*
> chmod 660 /dev/rcd0* /dev/cd0*
>
>
> in FreeBSD doing this for /dev/cd0 and /dev/acd0 doesn't work.
>
> tried to do the same with /dev/xpt0 - doesn't work too.
>
> is it possible at all?
> _______________________________________________
Hi,
from man cdrecord you will get:
[...]
If you don't want to allow users to become root on your system,
cdrecord may safely be installed suid root. This allows all users or a
group of users with no root privileges to use cdrecord. Cdrecord in
this case checks, if the real user would have been able to read the
specified files. To give all user access to use cdrecord, enter:
chown root /usr/local/bin/cdrecord
chmod 4711 /usr/local/bin/cdrecord
To give a restricted group of users access to cdrecord enter:
chown root /usr/local/bin/cdrecord
chgrp cdburners /usr/local/bin/cdrecord
chmod 4710 /usr/local/bin/cdrecord
and add a group cdburners on your system.
Never give write permissions for non root users to the /dev/scg?
devices unless you would allow anybody to read/write/format all your
disks.
[...]
Oliver
--
... don't touch the bang bang fruit
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040802030235.GA3005>