saned in root ???
Hi All,
Okay, now this is "scary".
Both xsane and Simple Scan work locally.
I can not get saned to work, UNLESS, I edit /etc/group and add the following to root
root:x:0:saned
Without it, I get
$ xsane net:localhost:epkowa:interpreter:001:007
Access to resource has been denied
Now what am I doing wrong? Must saned have root privileges?
What are the security ramifications of doing this?
Many thanks, -T
Extra info:
I just caught this:
$ ps -eo pid,user,group,args --sort user | grep cups
5005 root root /usr/sbin/cupsd -l
CUPS "is" running as root. So is it okay to add saned to root's group?
Response to Thomas Wood that will not fit in the comment's post:
$ scanimage -L
device `epkowa:interpreter:001:007' is a Epson Perfection V300 flatbed scanner
$ lsusb -s 001:007
Bus 001 Device 007: ID 04b8:0131 Seiko Epson Corp. GT-F720 [GT-S620/Perfection V30/V300 Photo]
$ ls -l /dev/bus/usb/001/007
crw-rw-r--+ 1 root root 189, 6 Mar 10 12:03 /dev/bus/usb/001/007
$ ls -l /usr/lib/udev/rules.d | grep -i sane
-rw-r--r--. 1 root root 3934 Mar 9 12:21 65-sane-backends.rules
$ grep lp /etc/group
lp:x:7:saned
The following temporarily fixes the issue (saned removed from root and a test to verify xsane net:localhost crashes before throwing the following):
# chown saned.saned ls -l /dev/bus/usb/001/007
But the scanner does not always mount on 001:007. Power it off and back on and it mounts on 001:008, etc.. and the chown has to be rethrown every reboot.
Check the permissions on the the device of your scanner connected in
/dev/. Look at the groups of the device and it might be sufficient to add thesaneduser to thelpgroup. Depending on the group that is assigned to the device and the access rights.See my extra info in the original question