Re: [patch 0/8] unprivileged mount syscall

From: Eric Van Hensbergen
Date: Fri Apr 06 2007 - 23:40:52 EST

Next message: Bill Davidsen: "Re: [PATCH resend][CRYPTO]: RSA algorithm patch"
Previous message: johnrobertbanks: "Re: Reiser4. BEST FILESYSTEM EVER."
In reply to: H. Peter Anvin: "Re: [patch 0/8] unprivileged mount syscall"
Next in thread: Miklos Szeredi: "Re: [patch 0/8] unprivileged mount syscall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 4/6/07, H. Peter Anvin <hpa@xxxxxxxxx> wrote:

Jan Engelhardt wrote:
> On Apr 6 2007 16:16, H. Peter Anvin wrote:
>>>> - users can use bind mounts without having to pre-configure them in
>>>> /etc/fstab
>>>>
>> This is by far the biggest concern I see. I think the security implication of
>> allowing anyone to do bind mounts are poorly understood.
>
> $ whoami
> miklos
> $ mount --bind / ~/down_under
>
> later that day:
> # userdel -r miklos
>

Consider backups, for example.

This is the reason why enforcing private namespaces for user mounts
makes sense. I think it catches many of these corner cases.

-eric
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Bill Davidsen: "Re: [PATCH resend][CRYPTO]: RSA algorithm patch"
Previous message: johnrobertbanks: "Re: Reiser4. BEST FILESYSTEM EVER."
In reply to: H. Peter Anvin: "Re: [patch 0/8] unprivileged mount syscall"
Next in thread: Miklos Szeredi: "Re: [patch 0/8] unprivileged mount syscall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]