[gentoo-user] Cdrtools installation without suid root

Hi all, since Linux-2.6.24, fcaps support is part of the vanilla kernel. If you also add libcap user and developer support and the commands getcap and setcap, you will be able to install working versions for: cdrecord, cdda2wav, readcd without making them suid-root. This works with

Re: [gentoo-user] Cdrtools installation without suid root

On Fri, Apr 26, 2013 at 06:18:13PM +0200, Joerg Schilling wrote: Hi all, since Linux-2.6.24, fcaps support is part of the vanilla kernel. If you also add libcap user and developer support and the commands getcap and setcap, you will be able to install working versions for: cdrecord,

Re: [gentoo-user] Cdrtools installation without suid root

Joerg Schilling schrieb am 26.04.2013 18:18: Hi all, since Linux-2.6.24, fcaps support is part of the vanilla kernel. If you also add libcap user and developer support and the commands getcap and setcap, you will be able to install working versions for: cdrecord, cdda2wav, readcd

Re: [gentoo-user] Cdrtools installation without suid root

Daniel Pielmeier bil...@gentoo.org wrote: without making them suid-root. This works with cdrtools-3.01a14 or later. Check ftp://ftp.berlios.de/pub/cdrecord/alpha/ Thanks Jörg, I have read the release notes for alpha14 and prepared an ebuild which automatically applies the

Re: [gentoo-user] Cdrtools installation without suid root

Joerg Schilling schrieb am 26.04.2013 19:07: Daniel Pielmeier bil...@gentoo.org wrote: without making them suid-root. This works with cdrtools-3.01a14 or later. Check ftp://ftp.berlios.de/pub/cdrecord/alpha/ Thanks Jörg, I have read the release notes for alpha14 and prepared an

Re: [gentoo-user] Cdrtools installation without suid root

Daniel Pielmeier bil...@gentoo.org wrote: Actually it is the linkage against libcap what I am concerned of. This is what I call a security risk with the current concepts of some linux systems. See Announcement file for more Imagine the following scenario. Libcap is not present on the

Re: [gentoo-user] Cdrtools installation without suid root

Joerg Schilling schrieb am 26.04.2013 20:31: Daniel Pielmeier bil...@gentoo.org wrote: Actually it is the linkage against libcap what I am concerned of. This is what I call a security risk with the current concepts of some linux systems. See Announcement file for more Imagine the

Re: [gentoo-user] Cdrtools installation without suid root

Daniel Pielmeier bil...@gentoo.org wrote: I am concerned about a different scenario: Imagine, you compile cdrtools without libcap and later install the support for the OS. Now you decide to use setcap to make cdrecord work. Cdrecord will really work this way, but you opened a