On Thu, Jul 14, 2011 at 2:27 PM, Kay Sievers <kay.sievers@xxxxxxxx> wrote: > On Thu, Jul 14, 2011 at 14:23, Linus Walleij <linus.walleij@xxxxxxxxxx> wrote: >> As a simple user, I'm pretty tired of this, when using a >> simple serial console for something: >> $ minicom >> Device /dev/ttyUSB0 access failed: Permission denied. > >> +# USB-to-serial dongles, irDA links and other stuff classified as "dialout" >> +GROUP=="dialout", TAG+="udev-acl" > > We obviously can't do that for security reasons. Any untrusted user > could call 900 numbers that way. You need to put yourself in the > dialout group or use a privileged helper to wrap your access. First I think that is only interesting to administrators of servers and largescale installations, is that right? It does only create obstacles for a home desktop user that s/he cannot use a modem with a default install of the OS. So if it is an axiom that the default ACL rules are for servers, I understand this, is that the case? But there is plain naming problems with this default rule (which creates the dialout group): # serial KERNEL=="tty[A-Z]*[0-9]|pppox[0-9]*|ircomm[0-9]*|noz[0-9]*|rfcomm[0-9]*", GROUP="dialout" tty[A-Z]*[0-9] and ircomm[0-9]* has nothing implicit in their drivers that tells you there is a modem on the other side. I will cook another patch that illustrates the problem better... Thanks, Linus Walleij -- To unsubscribe from this list: send the line "unsubscribe linux-hotplug" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
