From: Ian R. <id...@us...> - 2005-08-04 00:58:06
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jon Smirl wrote: > On 8/3/05, Dave Airlie <ai...@li...> wrote: > >>I'm not over-the-moon about this approach of changing the system to be >>default allow anything and adding root checks, I'd rather it was default >>root check and overrideable to allow non-root... > > I started off that way but then I figured out that very few ioctl need > to require root. That would require adding about 70 root checks and > then turning around and eliminating most of them immediately since > mesa uses almost all of the ioctls (indirect is the only exception I > know of) We can get the same effect just by inspecting the list of > ioctls. The difference being that you can incrementally remove root-checks without compromising the system. The same cannot be said for incrementally adding them. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFC8WfyX1gOwKyEAw8RAsl8AJ9BpLonnpNTdETFS/C5zmHAxr/9gwCcD0wa mab3pazwkd13LCmYcDgFAUM= =C9NI -----END PGP SIGNATURE----- |