Package: cdrecord Version: 4:2.01+01a03-5 Severity: normal I set my debconf priority to critical in order to see if I could get by with just the defaults, as I am prone to modifying configs without a second thought. I don't know exactly what the policy is concerning debconf priorities, but seeing as for the `critical' level debconf says "Pick it if you are a newbie", the question about setting cdrecord to be SUID should theorectically be of `critical' importance, since otherwise newbies will not be able to burn CDs, and will continue to flood irc channels with cryptic "Cannot send SCSI cmd via ioctl" messages. I generally prefer things to have a "Just Works" policy, though I am aware there is a lot to consider here, and that there are other probably better solutions, such as rewording debconf's message level question. Note that currently it is of medium priority, so it will display if users just select the default. But since the question says "If in doubt, I suggest you install it without SUID.", and doesn't mention that if you are migrating from a less secure operating system you won't care, this still isn't clear enough for the unpersuaded Linux novice who will consequently give up. I am also not sure how recent kernels have been improving raw device access permissions in this area or whether the current suid solution will not be necessary anymore, so this may not actually be an issue at some point in the future.
Thank you, Adonikam -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.14 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages cdrecord depends on: ii debconf [debconf-2.0] 1.4.67 Debian configuration management sy ii libc6 2.3.5-12 GNU C Library: Shared libraries an ii libcap1 1:1.10-14 support for getting/setting POSIX. ii makedev 2.3.1-79 creates device files in /dev Versions of packages cdrecord recommends: ii mkisofs 4:2.01+01a03-5 Creates ISO-9660 CD-ROM filesystem -- debconf information: * cdrecord/SUID_bit: true cdrecord/MAKEDEVNEW: true cdrecord/do_it_yourself: -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
