[rsbac] some problems with acl and dev

Josh Beagley rsbac@rsbac.org
Sun Nov 24 12:01:02 2002

Using 1.2.1 with all latest bugfixes and 2.4.19 kernel.

Problem: I am attemting to grant a normal user the ability to mount cdroms.
I attemtped to allow mount permission to /dev/hdc (my cdrom device) for
specified user, but as secoff I get an error saying:

rsbac_acl_sys_add_to_acl_entry(): adding rights
000000000000000000000000000000000000000000000000000 for USER 1000 to DEV
block 22:00 denied for user 400!

apoligies if mailer wraps.

Is this perhaps the incorrect way of allowing a normal user to mount? (All
non-rsbac configuration is correct, eg fstab)

As a side question, in order to get the kernel version to display rsbac,
where exactly in the kernel source should i do touch Makefile?