[LAD] jack daemon scripts

fons at kokkinizita.net fons at kokkinizita.net
Mon Mar 8 11:22:50 UTC 2010

Previous message: [LAD] jack daemon scripts
Next message: [LAD] jack daemon scripts
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Mar 08, 2010 at 03:06:08AM +0100, torbenh wrote:

> second, and more important reason. jack isnt designed to be secure in
> any way. a malicious client can easily make jackd crash. and since its
> possible to write data into the servers addressspace, its pretty likely
> that its possible to make this crash execute code with jackd privilege
> level. 

This risk always exists once you allow a user to use Jack,
it doesn't matter if that happen under his own login (as
would be permitted with promiscuous) or using a second
'shared' identity (as is required now if there is more
than one user). The latter is probably even less safe.

And at least here, a computer being hacked is probably
the least of all risks. Any user getting access to the
system can damage it in much more expensive ways.

Allowing access based on group membership would be ideal,
at least for my use.

Ciao,

-- 
FA

O tu, che porte, correndo si ?
E guerra e morte !

Previous message: [LAD] jack daemon scripts
Next message: [LAD] jack daemon scripts
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Linux-audio-dev mailing list