On Tue, Aug 25, 2009 at 08:53:18PM +0200, Florian Zumbiehl wrote: > > > b) (optionally mknod() with mode&0600), chmod() to mode&0600, > > > chown() to configured owner/group, chmod() to configured mode. > > > > > > This one potentially temporarily reduces permissions to a proper > > > subset of both the permissions before and after the change - > > > I guess that that's not desirable? > > > > See Scott's response as to why this isn't ok. > > I can't find anything as to why this wouldn't be ok in any of his emails. Because, again, you aren't really protecting anything here. Especially as you point out that there are no existing device node rules that have problems in them. So I fail to see the issue. thanks, greg k-h -- To unsubscribe from this list: send the line "unsubscribe linux-hotplug" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
