pkg/55349: ham/rtl-sdr should implement a role user or group for access control/security

To: pkg-manager%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,pkgsrc-bugs%netbsd.org@localhost
Subject: pkg/55349: ham/rtl-sdr should implement a role user or group for access control/security
From: cmhanson%eschatologist.net@localhost
Date: Fri, 5 Jun 2020 19:50:00 +0000 (UTC)

>Number:         55349
>Category:       pkg
>Synopsis:       ham/rtl-sdr should implement a role user or group for access control/security
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Fri Jun 05 19:50:00 +0000 2020
>Originator:     Chris Hanson
>Release:        9.0_2020Q1
>Organization:
>Environment:
NetBSD core.eschatologist.net 9.0_STABLE NetBSD 9.0_STABLE (GENERIC) #2: Mon Jun  1 14:08:20 PDT 2020  cmh%core.eschatologist.net@localhost:/usr/obj/sys/arch/amd64/compile/GENERIC amd64

>Description:
Right now naively plugging in an SDR USB device, installing ham/rtl-sdr, and trying to use the tools from it results in no radio being found, because the radio devices (say /dev/ugen0*) get mode rw- for root only. A user has to su or sudo in order to run the tools, which is very bad security practice since the radio device is literally taking in data from the outside world.

>How-To-Repeat:

>Fix:
Access to radio devices could be gated on a specific user acocunt or on group membership.

For example, if the devices were owned by a ?_radio? role user, the tools in ham/rtl-sdr could be made setuid to that user, so while any user could run them, they would run with reduced rather than expanded privileges, and still be able to access the radio.

Another potential fix would be to have the devices owned by a ?_radio? role group, and require users to be added to that group if they wish to access the radios. Then the ham/rtl-sdr tools would run with that user?s privileges, but because that user is a member of the group they would still have access to the radios.

My instinctive preference is for a ?_radio? role user, because it gives the least privilege to the tools interacting with the radio device. However, I haven?t analyzed what access to the rest of the system ham/rtl-sdr actually requires; for example, if it requires access to user configuration files, it may be onerous to require a user to figure out how to share those with the role user. Someone who knows the package better than I would have to make that call.

Prev by Date: pkg/55348: ham/rtl-sdr does not install manpages
Next by Date: Re: pkg/55348: ham/rtl-sdr does not install manpages
Previous by Thread: pkg/55348: ham/rtl-sdr does not install manpages
Next by Thread: Re: pkg/54731
Indexes:

Home | Main Index | Thread Index | Old Index