On Sun, Nov 30, 2014 at 05:45:01PM -0600, Bruce Dubbs wrote: > Ken Moffat wrote: > >On Sun, Nov 30, 2014 at 02:40:30PM -0600, Bruce Dubbs wrote: > >>Lfs User wrote: > >> > >>Is there a requirement to run qemu as a non-root user? The capabilities are > >>really in root's domain. > >> > > > > Running it as a user seems like the correct thing to do. We > >already say > > > >| You will need a dedicated group that will contain users (other than > >|root) allowed to access the KVM device. Add the group by running the > >|following command as the root user: > >| > >|groupadd -g 61 kvm > > Yes, we do that. What do you suggest that we do then? We can change the > group of /usr/bin/qemu* to kvm and set them sgid.
I'm in the kvm group and have no problem using the /usr/bin/qemu-* binaries (so far I've only used -img and -system-*, is there a reason why any of the otehrs would casue a problem ?). > We would also need to do > that for /usr/sbin/brctl and /sbin/ip to get networking to work. > > Looking at the above, should brctl be moved to /sbin? > For my use case, bridge-utils provide no benefit. I do not agree with the phrase "One problem with the above networking solution is that it does not provide the ability to connect with the local network.", but I am uncertain exactly what problem bridge-utils solves : does it let you connect to the host ? Since I do not at the moment understand why you think sgid is necessary, I cannot comment on changes to brctl and ip. ĸen -- Nanny Ogg usually went to bed early. After all, she was an old lady. Sometimes she went to bed as early as 6 a.m. -- http://lists.linuxfromscratch.org/listinfo/blfs-dev FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
