Slackware This Forum is for the discussion of Slackware Linux.
|
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
07-27-2006, 09:31 PM
|
#1
|
Member
Registered: Dec 2004
Distribution: Slackware-current
Posts: 207
Rep:
|
I shouldn't play cdrom, but I can play
Hey people! I am logging as a normal user, called matrix. It hasn't any other system privilege, as you can see in /etc/group:
root::0:root
bin::1:root,bin,daemon
daemon::2:root,bin,daemon
sys::3:root,bin,adm
adm::4:root,adm,daemon
tty::5:
disk::6:root,adm
lp::7:lp
mem::8:
kmem::9:
wheel::10:root
floppy::11:root
mail::12:mail
news::13:news
uucp::14:uucp
man::15:
audio::17:
video::18:
cdrom::19:
games::20:
slocate::21:
utmp::22:
smmsp::25:smmsp
mysql::27:
rpc::32:
sshd::33:sshd
gdm::42:
shadow::43:
ftp::50:
pop::90op
scanner::93:
nobody::98:nobody
nogroup::99:
users::100:matrix
console::101:
Here is 'matrix' line in /etc/passwd:
matrix:x:1000:100:Matrix Systems,,,:/home/matrix:/bin/bash
And here is the permission of my cdrom drive (/dev/hdd):
brwxr-x--- 1 root cdrom 22, 64 2002-06-09 16:27 /dev/hdd
The problem is: Matrix is still able to listen to music CDs, when it shouldn't be, because I did chmod 750 in /dev/hdd and matrix is NOT on cdrom group. Why? Any help would be appreciated. I already tried to reboot, no results.
|
|
|
07-27-2006, 09:52 PM
|
#2
|
Member
Registered: Feb 2004
Location: Canada
Distribution: LFS SVN
Posts: 334
Rep:
|
You are using current, sometimes things get messed up, you can't really complain about it, because it's like Slackware 11.0 BETA
so, go back to Slackware 10.2 or wait for Pat to fix the problem.
|
|
|
07-27-2006, 10:02 PM
|
#3
|
Member
Registered: Dec 2004
Distribution: Slackware-current
Posts: 207
Original Poster
Rep:
|
Was that a joke or are you serious, my friend?
|
|
|
07-27-2006, 10:18 PM
|
#4
|
Senior Member
Registered: Jun 2004
Location: Argentina (SR, LP)
Distribution: Slackware
Posts: 3,145
Rep:
|
Don't forget the default groups you get assigned by /etc/login.defs: CONSOLE_GROUPS floppy:audio:video:cdrom
|
|
|
07-28-2006, 01:41 AM
|
#5
|
Member
Registered: Jan 2004
Location: On Planet Earth.
Distribution: Slackware 12
Posts: 244
Rep:
|
Hi
can you post your fstab file ?
|
|
|
07-28-2006, 04:07 AM
|
#6
|
Member
Registered: Mar 2005
Location: Right behind you.
Distribution: NBG, then randomed.
Posts: 480
Rep:
|
When you're logged in as matrix, run the `id` command. It will always tell you what your uid and group memberships are. They are probably not what you think they are. You do have write access to the optical drive or somethings been made suid that probably didn't need to be.
|
|
|
07-28-2006, 04:12 AM
|
#7
|
Member
Registered: Dec 2004
Distribution: Slackware-current
Posts: 207
Original Poster
Rep:
|
Hey people! Problem solved! I had to edit my /etc/login.defs and change a line from:
CONSOLE_GROUPS floppy:audio:video:cdrom
To:
CONSOLE_GROUPS floppy:audio:video
I didn't know about it, but this line is a config for:
# List of groups to add to the user's supplementary group set
# when logging in on the console (as determined by the CONSOLE
# setting). Default is none.
#
# Use with caution - it is possible for users to gain permanent
# access to these groups, even when not logged in on the console.
# How to do it is left as an exercise for the reader...
Thanks to gbonvehi and everyone who helped me! (exception: ProtoformX)
Last edited by stevesk; 07-28-2006 at 04:14 AM.
|
|
|
All times are GMT -5. The time now is 02:31 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|