The correct way to make it secure is to remove it. The way to make it WORK is to remove it. By calling a specific, broken setuid helper, calibre puts a risk on the system, but it also fails to accomplish the task, since it should actually be done through the native OS tools, and can conflict with whatever the OS is already doing with removable devices.
Again, you must use GIO. It will correctly interact with the OS, report when devices are inserted/mounted/unmounted and allow you to interact with those devices without breaking havoc. The solutions you are currently looking at are way beyond broken. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/885027 Title: SUID Mount Helper has 5 Major Vulnerabilities To manage notifications about this bug go to: https://bugs.launchpad.net/calibre/+bug/885027/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
