Date: Mon, 3 Apr 2006 10:46:03 +0100 (BST) From: Robert Watson <rwatson@FreeBSD.org> To: Joe Marcus Clarke <marcus@FreeBSD.org> Cc: hackers@FreeBSD.org Subject: Re: RFC: Adding a ``user'' mount option Message-ID: <20060403104309.Y76562@fledge.watson.org> In-Reply-To: <1144042356.824.16.camel@shumai.marcuscom.com> References: <1144042356.824.16.camel@shumai.marcuscom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. --0-1630884416-1144057563=:76562 Content-Type: TEXT/PLAIN; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: QUOTED-PRINTABLE On Mon, 3 Apr 2006, Joe Marcus Clarke wrote: > I know we have vfs.usermount, but this is not always sufficient since the= =20 > user has to own the mount point in question. What I propose is to add a= =20 > ``user'' mount option =E0 la Linux. This would make mount and umount set= uid=20 > root, but would allow much more flexibility when it comes to removable me= dia=20 > and desktop systems. I would suggest that an extremely careful security audit of the userspace a= nd=20 kernel mount and unmount code is due -- especially things like the=20 per-filesystem mount code (mount_nfs, etc). I'm not against the principle = of=20 this though. Also, I'm not 100% sure we should make the getuid() check return a hard err= or=20 in user space. Let's continue to let the kernel code make the access contr= ol=20 decision here. Robert N M Watson > > I'm not a src committer, so this isn't a threat to commit. I'm more > interested in getting feedback, and hopefully some src committer > interest. I think this would really benefit desktop FreeBSD. > > http://www.marcuscom.com/downloads/usermount.diff > > Joe > > --=20 > Joe Marcus Clarke > FreeBSD GNOME Team :: gnome@FreeBSD.org > FreeNode / #freebsd-gnome > http://www.FreeBSD.org/gnome > --0-1630884416-1144057563=:76562--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060403104309.Y76562>