On Fri, 2008-09-05 at 17:23 +0000, Matt Zimmerman wrote: > I understand, but I'm struggling with how we can grant raw hardware-level > access to these devices (as needed by VMs) without compromising security on > the host. USB is used for a wide range of peripherals, some of which should > not be entrusted to unprivileged users. > The way I'm thinking, there is no "we" - leave it to the user to decide whether to grant that permission through the process of installing the udev rule. At the moment they install the rule manually if they want user access to /dev/bus/usb/*/* so a package to do it as a result of "sudo apt get install ..." is just ensuring the process is bullet-proof.
I'm not advocating a system-default policy but something that makes it easy for the user to apply the relaxed permission when they make a conscious decision. I like the idea of a package since simply by installing/removing it the permission for any hypervisor to access the devices would be enabled/denied. -- Could not open /proc/bus/usb/devices https://bugs.launchpad.net/bugs/156085 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
