FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > Fedora Development

 
 
LinkBack Thread Tools
 
Old 07-09-2008, 07:23 PM
Bill Nottingham
 
Default kill pam_console

We've carried both pam_console and HAL-based ACL support for a while
now. It's time to cut the cord and remove pam_console, so we only
have one way of setting device permissions to worry about.

Here's the list of packages that still contain pam_console configuration
that would need migrated:

pam (tmraz@redhat.com)
/etc/security/console.perms.d/50-default.perms

em8300 (ville.skytta@iki.fi)
/etc/security/console.permbs.d/60-em8300.perms

jfbterm (mtasaka@ioa.s.u-tokyo.ac.jp)
/etc/security/console.perms.d/60-jfbterm.perms

libmtp (triad@df.lth.se)
/etc/security/console.perms.d/60-libmtp.perms

libnjb (triad@df.lth.se)
/etc/security/console.perms.d/60-libnjb.perms

thinkfinger (silfreed@silfreed.net)
/etc/security/console.perms.d/60-thinkfinger.perms

vdr (ville.skytta@iki.fi)
/etc/security/console.perms.d/95-vdr.perms

dfu-programmer (weston_schmidt@alumni.purdue.edu)
/etc/security/console.perms.d/dfu-programmer-at89c51.perms
/etc/security/console.perms.d/dfu-programmer-at90usb.perms

piklab (cgoorah@yahoo.com.au)
/etc/security/console.perms.d/icd2.perms
/etc/security/console.perms.d/pickit1.perms
/etc/security/console.perms.d/pickit2.perms

These all seem like they'd be reasonable to fix. Does anyone
see this as a problem?

Bill

--
fedora-devel-list mailing list
fedora-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-devel-list
 
Old 07-09-2008, 07:32 PM
Chris Adams
 
Default kill pam_console

Once upon a time, Bill Nottingham <notting@redhat.com> said:
> We've carried both pam_console and HAL-based ACL support for a while
> now. It's time to cut the cord and remove pam_console, so we only
> have one way of setting device permissions to worry about.

I am slow on the up-take here, but how do I use the "HAL-based ACL
support" to replace pam_console? For example, on a system with serial
ports used for accessing other consoles, I have a 10-serial.perms like:

################################################## ######################
<serial>=/dev/ttyS[0-9]* /dev/ttyUSB[0-9]*

<console> 0660 <serial> 0660 root.uucp
################################################## ######################

How do I replace that?

--
Chris Adams <cmadams@hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.

--
fedora-devel-list mailing list
fedora-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-devel-list
 
Old 07-09-2008, 07:53 PM
Bill Nottingham
 
Default kill pam_console

Chris Adams (cmadams@hiwaay.net) said:
> Once upon a time, Bill Nottingham <notting@redhat.com> said:
> > We've carried both pam_console and HAL-based ACL support for a while
> > now. It's time to cut the cord and remove pam_console, so we only
> > have one way of setting device permissions to worry about.
>
> I am slow on the up-take here, but how do I use the "HAL-based ACL
> support" to replace pam_console? For example, on a system with serial
> ports used for accessing other consoles, I have a 10-serial.perms like:
>
> ################################################## ######################
> <serial>=/dev/ttyS[0-9]* /dev/ttyUSB[0-9]*
>
> <console> 0660 <serial> 0660 root.uucp
> ################################################## ######################
>
> How do I replace that?

See /usr/share/hal/fdi/policy/10osvendor/00-thinkfinger.fdi for an
example of something that does access control. What does lshal
have for your serial devices?

Bill

--
fedora-devel-list mailing list
fedora-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-devel-list
 

Thread Tools




All times are GMT. The time now is 05:58 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org