Comment 87 for bug 213215

Revision history for this message
In , Simone (simone-redhat-bugs) wrote :

Here it is again, everything updated:

http://www.kosgroup.com/simosimo/

[slaanesh@buko repo.el5]$ rpmlint *3.00*
cdda2wav.x86_64: E: setuid-binary /usr/bin/cdda2wav root 04755L
cdda2wav.x86_64: E: non-standard-executable-perm /usr/bin/cdda2wav 04755L
cdrecord.x86_64: E: setuid-binary /usr/sbin/rscsi root 04755L
cdrecord.x86_64: E: non-standard-executable-perm /usr/sbin/rscsi 04755L
cdrecord.x86_64: E: setuid-binary /usr/bin/readcd root 04755L
cdrecord.x86_64: E: non-standard-executable-perm /usr/bin/readcd 04755L
cdrecord.x86_64: E: setuid-binary /usr/bin/cdrecord root 04755L
cdrecord.x86_64: E: non-standard-executable-perm /usr/bin/cdrecord 04755L
cdrtools.src:96: E: hardcoded-library-path in $RPM_BUILD_ROOT/usr/lib/profiled
cdrtools.src:102: E: hardcoded-library-path in $RPM_BUILD_ROOT/usr/lib/lib*.a
cdrtools.src:146: E: hardcoded-library-path in /usr/lib/siconv/*
mkisofs.x86_64: W: only-non-binary-in-usr-lib
6 packages and 0 specfiles checked; 11 errors, 1 warnings.

Is there a way to set the option at compile time to make mkisofs look for lib/siconv files somewhere else?

Fedora sets some permission on cd/dvd burners for the user that is logged into the first graphical console, I think that these permissions are enough to remove the setuid bit at least for commands that just require r/w access to the device. Is it correct?

[slaanesh@buko ~]$ ls -al /dev/sr* /dev/cd* /dev/dvd*
lrwxrwxrwx. 1 root root 3 Nov 29 08:37 /dev/cdrom -> sr0
lrwxrwxrwx. 1 root root 3 Nov 29 08:37 /dev/cdrw -> sr0
lrwxrwxrwx. 1 root root 3 Nov 29 08:37 /dev/dvd -> sr0
lrwxrwxrwx. 1 root root 3 Nov 29 08:37 /dev/dvdrw -> sr0
brw-rw----+ 1 root cdrom 11, 0 Nov 29 08:37 /dev/sr0
[slaanesh@buko ~]$ getfacl /dev/sr0
getfacl: Removing leading '/' from absolute path names
# file: dev/sr0
# owner: root
# group: cdrom
user::rw-
user:slaanesh:rw-
group::rw-
mask::rw-
other::---

Thanks,
--Simone