From owner-freebsd-hackers@FreeBSD.ORG  Mon Apr  3 06:23:33 2006
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
X-Original-To: hackers@freebsd.org
Delivered-To: freebsd-hackers@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id C29D716A429
	for <hackers@freebsd.org>; Mon,  3 Apr 2006 06:23:33 +0000 (UTC)
	(envelope-from ale@FreeBSD.org)
Received: from andxor.it (relay.andxor.it [195.223.2.3])
	by mx1.FreeBSD.org (Postfix) with SMTP id 1B45343D7C
	for <hackers@freebsd.org>; Mon,  3 Apr 2006 06:23:25 +0000 (GMT)
	(envelope-from ale@FreeBSD.org)
Received: (qmail 94802 invoked from network); 3 Apr 2006 06:23:24 -0000
Received: from unknown (HELO ?192.168.178.2?)
	(a.premoli@andxor.it@81.174.31.42)
	by andxor.it with SMTP; 3 Apr 2006 06:23:24 -0000
Message-ID: <4430BF5B.80406@FreeBSD.org>
Date: Mon, 03 Apr 2006 08:23:23 +0200
From: Alex Dupre <ale@FreeBSD.org>
User-Agent: Thunderbird 1.5 (X11/20060331)
MIME-Version: 1.0
To: Colin Percival <cperciva@freebsd.org>
References: <1144042356.824.16.camel@shumai.marcuscom.com>
	<4430BA79.2030403@freebsd.org>
In-Reply-To: <4430BA79.2030403@freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: hackers@freebsd.org, Joe Marcus Clarke <marcus@freebsd.org>
Subject: Re: RFC: Adding a ``user'' mount option
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Apr 2006 06:23:33 -0000

Colin Percival wrote:
> Generally speaking it's much better to add a new setuid program which does
> exactly what you need, rather than making an existing and possibly insecure
> program setuid.

Generally speaking I agree with you. To minimize the impact of having to
run a different 'mount' executable (that I doubt desktop environments
will likely do) it would be nice if 'mount' could automatically run
'usermount' if called by a regular user.

--
Alex Dupre