Bug#751892: udev: external media belong to disk group

Tue, 17 Jun 2014 08:09:55 -0700 

Package: udev
Version: 204-10
Severity: normal

Dear Maintainer,

since some Debian specific rules (91-permissions.rules?) have been dropped from
udev, external media (USB, firewire, SD-card) belong to disk group:

user@debian:~$ ls -l /dev/sd* /dev/mmc*
brw-rw---- 1 root disk 179,  0 juin  16 23:51 /dev/mmcblk0
brw-rw---- 1 root disk 179,  1 juin  16 23:51 /dev/mmcblk0p1
brw-rw---- 1 root disk   8,  0 juin  16 23:33 /dev/sda
brw-rw---- 1 root disk   8,  1 juin  16 23:33 /dev/sda1
brw-rw---- 1 root disk   8, 16 juin  16 23:40 /dev/sdb

This makes the default user is unable to modify the removable devices.
This means that only privileged users can dd a disk image on a USB stick, or
fully erase its content, or install a bootloader on it, and so on. CD/DVD
disks belong to 'cdrom' group, allowing default user to burn them from
commandline interface. Why shouldn't be the case for other removable media?

Knowing that the default user created during installation is member of
secondary groups 'floppy' and 'plugdev', and knowing that making this user a
member of the 'disk' group will only lead to security issues, wouldn't be
possible to (re)introduce specific rules to manage external/removable devices
differently than the internal ones, and make them readable and writable by any
member of 'floppy' or 'plugdev'? Or is there a plan to work around this issue?

Thanks
quidame


-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)

Kernel: Linux 3.14-1-486
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages udev depends on:
ii  debconf [debconf-2.0]  1.5.53
ii  libacl1                2.2.52-1
ii  libblkid1              2.20.1-5.8
ii  libc6                  2.19-1
ii  libkmod2               17-2
ii  libselinux1            2.3-1
ii  libudev1               204-10
ii  lsb-base               4.1+Debian13
ii  procps                 1:3.3.9-5
ii  util-linux             2.20.1-5.8

udev recommends no packages.

udev suggests no packages.

-- debconf information:
  udev/reboot_needed:
  udev/new_kernel_needed: false
  udev/title/upgrade:
  udev/sysfs_deprecated_incompatibility:


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to