On Thu, 2004-12-16 at 07:44 +0200, ocl wrote: > William Ballard wrote on 2004-12-16 07:31: > > On Thu, Dec 16, 2004 at 07:13:18AM +0200, ocl wrote: > > > >>This opinion of mine will be valid (AFAIC) until > >> > >>a) there is a way to authenticate these PnP devices > >> > >>b) someone comes up a workable solution that enables per-user > >> authorization for these PnP devices [in a single-sign-on > >> environment] > > > > MS is going to lockdown usb devices in Longhorn. > > They are beginning to learn, then.. But, USB is not enough; > all portable (PnP) devices should be /lockdownable/.. > > IMO, anything that is likely to bring in, or take out data (inc. > binaries) needs to be authorized and authenticated. Linux is no > exception.
Here, Linux is at an advantage, since if "IT" doesn't want lusers to to able to use thumb drives, iPods, external USB/ieee1394 hard drives, etc, then, well: # rm /lib/modules/`uname -r`/kernel/drivers/usb/storage/usb-storage.ko # rm /lib/modules/`uname -r`/kernel/drivers/ieee1394/sbp2.ko # apt-get --purge remove libgphoto2 etc, etc. -- ----------------------------------------------------------------- Ron Johnson, Jr. Jefferson, LA USA PGP Key ID 8834C06B I prefer encrypted mail. "Man, I'm pretty. Hoo Hah!" Johnny Bravo
signature.asc
Description: This is a digitally signed message part
