https://blog.crox.net/ en Serendipity 2.5.0 - http://www.s9y.org/ Mon, 28 Dec 2009 01:36:45 GMT https://blog.crox.net/templates/2k11/img/s9y_banner_small.png https://blog.crox.net/ 100 21 https://blog.crox.net/archives/64-Scanner-permissions-in-Ubuntu-Karmic-udev-libusb-saned-problem-with-udev-acl.html https://blog.crox.net/archives/64-Scanner-permissions-in-Ubuntu-Karmic-udev-libusb-saned-problem-with-udev-acl.html#comments https://blog.crox.net/wfwcomment.php?cid=64 4 https://blog.crox.net/rss.php?version=2.0&type=comments&cid=64 nospam@example.com (crox) In Ubuntu Karmic (and possibly Jaunty ?), when you install libsane, it adds a file /lib/udev/rules.d/40-libsane.rules which contains rules that match on supported scanners and set the environment variable "libsane_matched" to "yes".<br /> <br /> This in turn triggers the following in /lib/udev/rules.d/70-acl.rules:<br /> <pre># USB scanners<br />ENV{libsane_matched}=="yes", ENV{ACL_MANAGE}="1"<br /> &lt;snip&gt;<br /> # apply ACL for all locally logged in users<br />LABEL="acl_apply", ENV{ACL_MANAGE}=="?*", TEST=="/var/run/ConsoleKit/database", \<br /> RUN+="udev-acl --action=$env{ACTION} --device=$env{DEVNAME}"</pre><br /> In the end, the result is that an ACL is created for the device, which allows locally logged in users to use it (read/write permission). eg for my scanner:<br /> <pre>~# lsusb<br />Bus 001 Device 005: ID 04b8:011c Seiko Epson Corp. Perfection 3200<br />~# ls -l /dev/bus/usb/001/005<br />crw-rw-r--+ 1 root root 189, 4 2009-12-28 00:11 /dev/bus/usb/001/005<br />~# getfacl /dev/bus/usb/001/005<br />getfacl: Removing leading '/' from absolute path names<br /># file: dev/bus/usb/001/005<br /># owner: root<br /># group: root<br />user::rw-<br />user:crox:rw-<br />group::rw-<br />mask::rw-<br />other::r--<br />~#</pre><br /> However, I also wanted to allow access to the scanner from other workstations through saned. In older Ubuntu versions, you could just add saned (or whatever user the service runs as) to the scanner group. This no longer works since the device belongs to root:root, and ACLs are added for specific users. The solution that works for me is to create a file /etc/udev/rules.d/99-sane-group.rules with the following contents:<br /> <pre># change group to scanner for sane devices<br />ENV{libsane_matched}=="yes", GROUP="scanner"</pre><br /> Then you just need to run <pre>sudo udevadm trigger</pre> and the group of the device magically changes to scanner.<br /> <br /> Of course you could also add a similar rule specifically for a certain device instead, in my case this would work too:<br /> <pre>ATTRS{idVendor}=="1d6b", ATTRS{idProduct}=="0002", GROUP="scanner"</pre><br /> <br /> To check that it worked, run the following: <pre>sudo su -s /bin/bash -c 'scanimage -L' saned</pre><br /> <br /> <br /> Sun, 27 Dec 2009 23:13:00 +0000 https://blog.crox.net/archives/64-guid.html linux scanner ubuntu https://blog.crox.net/archives/7-Firewire-scanner-on-linux.html https://blog.crox.net/archives/7-Firewire-scanner-on-linux.html#comments https://blog.crox.net/wfwcomment.php?cid=7 0 https://blog.crox.net/rss.php?version=2.0&type=comments&cid=7 nospam@example.com (crox) (as root)<br /> <pre>modprobe ieee1394<br/>modprobe ohci1394<br/>modprobe sbp2<br/>sane-find-scanner<br/>chmod a+rw /dev/sg0</pre><br /> (as regular user)<br /> <pre>scanimage -L</pre><br /> Fri, 06 Oct 2006 22:16:57 +0000 https://blog.crox.net/archives/7-guid.html linux scanner