Em 15-06-2011 11:35, Hans de Goede escreveu: > Hi, > > On 06/15/2011 04:25 PM, Mauro Carvalho Chehab wrote: >> Em 15-06-2011 10:43, Hans de Goede escreveu: > > <snip> > >>> Right, because ConsoleKit ensures that devices like floppydrives, cdroms, >>> audio cards, >>> webcams, etc. are only available to users sitting behind the console, >> >> This is a wrong assumption. There's no good reason why other users can't >> access those >> devices. > > This is not an assumption, this is a policy decision. The policy is that > devices like > audiocards and webcams should be only available to local console users / > processes. To > avoid for example someone from spying upon someone else sitting behind the > computer. > > <snip>
The concept behind the policy decision is right, but the policy itself and its implementation are wrong. It makes sense to protect the access to the notebook/desktop microphone and webcam to the console, but it doesn't make sense to assume that all audio cards and video devices are microphones and webcams. There are several cases where they aren't, like mythtv/vdr servers, Video Surveillance devices, TV boards, etc. Also, I know at least one usecase where a Radio broadcast station is using an USB webcam to allow their audience to see what's happening there. So, even the assumption that all webcams need protection is wrong (In this specific case, they really want to allow someone else to spy what's happening there ;) ). That's said, it is OK that the default will be to not allow accessing to them, but adding someone else to the audio/video group should be enough to allow users to override this protection. Mauro. -- To unsubscribe from this list: send the line "unsubscribe linux-media" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
