[linux-audio-dev] Linux Security Module for realtime audio

[Jack O'Quin]

Tim Hockin <thockin at hockin.org> writes:

> On Mon, Dec 08, 2003 at 05:12:50PM -0600, Jack O'Quin wrote:
> > If you accept my arguments why this is not the right solution, then
> > the question remains, what to do about GTK-2?  I don't suppose the GTK
> > developers are likely to take the test out just because we ask them.
> 
> Have we tried?  It seems like a deeply paramoid check, to disallow sgid
> programs.  Is that REALLY the business of the toolkit?  I think they're
> overstepping their bounds, and they need to be reminded that some OTHER
> people need stuff like that.

No.  We just discovered the problem ourselves.  You make a good point
about a dialogue being worthwhile, and we should do that.  I am
willing to compose a note explaining the problem.  What forum would be
appropriate?  Is there a gtk-devel-something-or-other mailing list?

Of course, even if we convince them to change, there will be a
considerable lag between fixing their code in CVS and libraries
appearing in the binary distributions people use for running audio
applications.  I'm not even at their latest level of GTK-2.  For all I
know, they could have fixed it already in some newer version.

-- 
  joq