Granting logged on users read access to /dev/nvram would be nice; for example tpb from Fedora Extras could use that. More details about the tpb case: https://www.redhat.com/archives/fedora-packaging/2005-March/msg00077.html How about adding for example this to console.perms? <console> 0400 /dev/nvram 0600 root
This is not right because the user can then chmod the /dev/nvram to any value and overwrite the CMOS contents. The only solution would be to consider if reading the contents of /dev/nvram is really harmless and if that's true then assign it 0644 permissions in the udev permissions file.
Good point, thanks. The chmod problem never occurred to me, will look for another solution.