Date: Mon, 26 Jul 1999 08:44:14 -0600 From: "Ronald G. Minnich" <rminnich@acl.lanl.gov> To: freebsd-hackers@FreeBSD.org Subject: Re: Filesystem question... Message-ID: <Pine.SGI.4.10.9907260843280.226103-100000@n04.acl.lanl.gov> In-Reply-To: <Pine.BSF.4.10.9907250048380.87256-100000@janus.syracuse.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 25 Jul 1999, Brian F. Feldman wrote: > On Sun, 25 Jul 1999, Mark Newton wrote: > > > Ronald G. Minnich wrote: > > > But thanks for the note. I just now realized that if I add a private name > > > space to v9fs (which is easy), and then turn on user mounts, user > > > processes can have private name spaces on freebsd! > > I can't wait to see the security problems that causes when setuid executables > > assume that they only need to be worrying about one filesystem namespace. > > :-) > There shouldn't be any problems if mount enabled the flags for nosuid/nodev > etc. if suser(p) != 0. Actually, i'd expect far fewer problems for the private mounts than for user mounts which modify the name space for all processes ... ron To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.SGI.4.10.9907260843280.226103-100000>