[packages/VirtualBox] add warning about udev rules being insecure (allowing you to access any usb device)
glen
glen at pld-linux.org
Sat Mar 1 16:38:27 CET 2014
commit 37dbb4e161474ba500b4b064f612c31edb03afd3
Author: Elan Ruusamäe <glen at delfi.ee>
Date: Sat Mar 1 17:37:41 2014 +0200
add warning about udev rules being insecure (allowing you to access any usb device)
udev.rules | 2 ++
1 file changed, 2 insertions(+)
---
diff --git a/udev.rules b/udev.rules
index e9dfda7..9718593 100644
--- a/udev.rules
+++ b/udev.rules
@@ -2,6 +2,8 @@
KERNEL=="vboxdrv", GROUP="vbox", MODE="0660"
KERNEL=="vboxnetctl", GROUP="vbox", MODE="0660"
+# these lines below give access permission to vbox users to properly work with usb nodes, enabling them could be security risk:
+# https://bugzilla.novell.com/show_bug.cgi?id=664520
SUBSYSTEM=="usb_device", ACTION=="add", RUN+="VBoxCreateUSBNode.sh $major $minor $attr{bDeviceClass} vbox"
SUBSYSTEM=="usb", ACTION=="add", ENV{DEVTYPE}=="usb_device", RUN+="VBoxCreateUSBNode.sh $major $minor $attr{bDeviceClass} vbox"
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/VirtualBox.git/commitdiff/37dbb4e161474ba500b4b064f612c31edb03afd3
More information about the pld-cvs-commit
mailing list