Date: Mon, 2 Aug 2004 05:02:36 +0200 From: Oliver Fuchs <oliverfuchs@onlinehome.de> To: freebsd-questions@freebsd.org Subject: Re: allowing cdrecord non-root Message-ID: <20040802030235.GA3005@oliverfuchs.ath.cx> In-Reply-To: <20040731222618.J41097@chylonia.3miasto.net> References: <20040731222618.J41097@chylonia.3miasto.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 31 Jul 2004, Wojciech Puchar wrote: > how can i allow given group to be able to write cd's? > > in NetBSD doing (assuming group name cdrw) > > chgrp cdrw /dev/rcd0* /dev/cd0* > chmod 660 /dev/rcd0* /dev/cd0* > > > in FreeBSD doing this for /dev/cd0 and /dev/acd0 doesn't work. > > tried to do the same with /dev/xpt0 - doesn't work too. > > is it possible at all? > _______________________________________________ Hi, from man cdrecord you will get: [...] If you don't want to allow users to become root on your system, cdrecord may safely be installed suid root. This allows all users or a group of users with no root privileges to use cdrecord. Cdrecord in this case checks, if the real user would have been able to read the specified files. To give all user access to use cdrecord, enter: chown root /usr/local/bin/cdrecord chmod 4711 /usr/local/bin/cdrecord To give a restricted group of users access to cdrecord enter: chown root /usr/local/bin/cdrecord chgrp cdburners /usr/local/bin/cdrecord chmod 4710 /usr/local/bin/cdrecord and add a group cdburners on your system. Never give write permissions for non root users to the /dev/scg? devices unless you would allow anybody to read/write/format all your disks. [...] Oliver -- ... don't touch the bang bang fruit
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040802030235.GA3005>