[patch 7/8] allow unprivileged mounts
Miklos Szeredi
miklos at szeredi.hu
Sat Apr 21 01:23:27 PDT 2007
> >
> > > Define a new fs flag FS_SAFE, which denotes, that unprivileged
> > > mounting of this filesystem may not constitute a security problem.
> > >
> > > Since most filesystems haven't been designed with unprivileged
> > > mounting in mind, a thorough audit is needed before setting this flag.
> >
> > Practically speaking, is there any realistic likelihood that any filesystem
> > apart from FUSE will ever use this?
>
> V9FS people did express an interest in this. Yeah, I should've CC-ed
> them, but forgot. Sorry.
And CIFS maybe. They also have an unprivileged mounting suid hack.
But I'm not very optimistic about CIFS, seeing some of the code,
that's in there.
Miklos
More information about the Containers
mailing list