From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-pw0-f42.google.com (mail-pw0-f42.google.com [209.85.160.42]) by speech.braille.uwo.ca (Postfix) with ESMTP id 4EDB6C1A39D for ; Mon, 13 Dec 2010 13:18:25 -0500 (EST) Received: by pwj5 with SMTP id 5so1335812pwj.29 for ; Mon, 13 Dec 2010 10:18:24 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:date:from:to:subject :message-id:references:mime-version:content-type:content-disposition :in-reply-to:user-agent; bh=4OOpyU9OuVkALjE5rlCpST51HpjJC23b0aBc6UyDOaI=; b=Xgx1/iu3LUO72vJ5QDoXHVwuA1grNaLpQNQQsTZ1YLs0aTGZHh94Xb0OQ3h5SCYMTM lopLEDmtmQ4KuXq/HNIKgQZsTVPzPIsJ29CR8Mpy+v+Buz4UPZueWya1kgKvopgh2OAX oqmlziuXOsYm7Sp5ku7dv4OMlDhHHHVTyGIp0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:to:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; b=U8LAJ9zZJRPlCNbhbdybdc85YqfGP2sJCOzXNj2efJ+gOq3twzOdIYtFSZI6aui+TE d0rghVqMA2Yq62MpGFsKN02A6JTR3tSlNqGtCjkTZkgOIsxxIKwJuLOCgmRXBDsqBY/C 648bN6HS1a4Mi6H9aPK6ERU+RJC9ftX2Tfc6Y= Received: by 10.142.162.19 with SMTP id k19mr3519183wfe.25.1292264304715; Mon, 13 Dec 2010 10:18:24 -0800 (PST) Received: from localhost (c-76-127-93-92.hsd1.ca.comcast.net [76.127.93.92]) by mx.google.com with ESMTPS id p8sm9222213wff.4.2010.12.13.10.18.24 (version=TLSv1/SSLv3 cipher=RC4-MD5); Mon, 13 Dec 2010 10:18:24 -0800 (PST) Date: Mon, 13 Dec 2010 18:21:10 +0000 From: Frost To: "Speakup is a screen review system for Linux." Subject: Re: World writable speakup files in Linux next Message-ID: <20101213182110.GA29410@rivensight.dyndns.org> References: <20101210190047.GA19219@kroah.com> <87lj3wufx7.fsf@the-brannons.com> <20101211222834.GA27436@linux1> <20101212023532.GA6486@const> <20101212182940.GB16883@kroah.com> <20101213130612.GT5411@const.bordeaux.inria.fr> <20101213145306.GA8824@rivensight.dyndns.org> <20101213154157.GJ5411@const.bordeaux.inria.fr> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20101213154157.GJ5411@const.bordeaux.inria.fr> User-Agent: Mutt/1.5.20 (2009-06-14) X-BeenThere: speakup@braille.uwo.ca X-Mailman-Version: 2.1.13 Precedence: list Reply-To: "Speakup is a screen review system for Linux." List-Id: "Speakup is a screen review system for Linux." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Dec 2010 18:18:25 -0000 On Mon, Dec 13, 2010 at 04:41:57PM +0100, Samuel Thibault wrote: > No, you can't, because the loggued-in person might be a > virus/worm/attacker/whatever which compromised the user's account. Then your security was breached already, and has nothing to do with speakup. Personally, I think it's far worse for security to let a user have access to any and every mail client on the system, in case they use it to spam the entire planet with it, and those are left wide open on purpose. You don't see me clamping down restrictions on those, just because someone *might* abuse them and lose me my internet connection. If it's a virus, then it's not SpeakUP's problem, but mine for not following proper prophylactic procedures. If it's a user on the system goofing off, first they get warned, then they lose their accounts. Again, it's not SpeakUP's fault. Having access to SpeakUP from any console under any account *is* my problem, and I don't want to go thru 20 different steps, just to kick up the volume a notch on my own friggin keyboard. I certainly don't want to have to go through 20 different steps every time I need to su to someone else to check if something is working properly for them. Secure SpeakUP on your own, create your own distro, and release that if you want. Stay out of my computer. Michael