Re: [patch] My AMD IDE driver, v2.7

Jeff Garzik (jgarzik@mandrakesoft.com)
Mon, 11 Mar 2002 21:49:08 -0500


Alan Cox wrote:

>>Linus, would it be acceptable to you to include an -optional- filter for
>>ATA commands? There is definitely a segment of users that would like to
>>firewall their devices, and I think (as crazy as it may sound) that
>>notion is a valid one.
>>
>
>Jeff -I like the idea of the filters - but if the ATA command raw stuff
>is CAP_SYS_RAWIO then its the same right set as inb/outb. Beyond that
>its a job for the NSA and RSBAC stuff ?
>
Yeah, you can still bit-bang with the current implementation, on that
capability. Couldn't that be cured with s/CAP_SYS_RAWIO/some new
CAP_DEVICE_CMD/ for the raw device command interface?

The current implementation needs to be changed anyway :) From "ATA raw
command" to "device raw command" at the very least.

Jeff

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/