> > > Added both read and write for every one, changed the line in inet.conf
> > > back to nobody.nobody, and all works well.
> > Hmm - this isn't a very good solution, but ...
> OK, I'm listening, what is a better solution?
1. Make a group scanner.
2. chown root.scanner /dev/sg[whatever]
3. chmod 660 /dev/sg[whatever]
4. make the programs that you trust to access your scanner (i.e. saned,
scanimage and xscanimage) setgid scanner.
That is you do:
4a. chown root.scanner scanimage
4b. chmod 2755 scanimage
This will allow only these programs to access the scanner. You can do about
the same with setuid, but you have much less trouble with file permissions
when writing out files to your home or something like that when you
still retain your uid, but run with a new gid.
CU, Andy
-- = Andreas Beck | Email : <andreas.beck@ggi-project.org> =
-- Source code, list archive, and docs: http://www.mostang.com/sane/ To unsubscribe: echo unsubscribe sane-devel | mail majordomo@mostang.com