On Wed, 2 Oct 2002, Poul-Henning Kamp wrote: > In message <[EMAIL PROTECTED]>, Bruce Evans writes: > >One reason I have no confidence in devfs is that its quality is such as > >to get things like this wrong. There are magic ownerships and permissions > >in the source code for N drivers where they are hard to audit. > > > >The acd driver still uses the insecure mode 0644 despite this being > >reported a few years ago. World readability is especially insecure > >for acd since it gives some write access via some ioctls. E.g., > >everyone has permission to erase writable media. > > This is _not_ a DEVFS issue, this is a device driver issue.
It is a devfs issue that devfs moves things into the kernel where they harder to control and more fatal if they are got wrong. Bruce To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-current" in the body of the message
