Most distros, RH included, now offer a number of "security" options
during installation. Only a moron OS (i.e., Linux) would require root
privilege to copy a CD by default at "standard" security. :-)
When you run xcdroast for the first time as a non-root, it will prompt
you to log in as root, to change its configuration in order to allow
non-noot users. But for some reason, the Red Hat version of xcdroast
rpm only turns on the setuid bit for cdda2wav, but not cdparanoia. This
is where the problem arose.
Point to be taken: Don't just give someone a Linux CD and expect him/her
to fall in love with it. It is important to accumulate experience. You
will be surprised how much just a small modification (from the stock
distro) can to do improve its image.
Peace!
Vince Hoang wrote:
On Sun, Dec 08, 2002 at 07:10:29PM -1000, W. Wayne Liauh wrote:
It turns out that either RH 8.0 failed to turn on the setuid
for cdparanoia, or one of the rpms that I subsequently
installed turned it off. A simple command "chmod 4744
cdparanoia" solved the problem. While I still couldn't
duplicate audio CD directly, I am happy for now.
I think it is a good thing that cdparanoia should not have the
SUID bit set by default. It is one less possible overflow to
worry about. A bit more hassle, but it is worth the security. I
am not current on rpms, but the package manager can default to
no, but prompt to see if you want it SUID. (Debian offers this.)
-Vince
_______________________________________________
LUAU mailing list
[EMAIL PROTECTED]
http://videl.ics.hawaii.edu/mailman/listinfo/luau
