Re: Security issues with local filesystem caching

From: David Howells
Date: Fri Nov 03 2006 - 10:35:26 EST

Next message: Mariusz Kozlowski: "Re: orinoco driver question"
Previous message: Anton Vorontsov: "[PATCH] fix ide-cs hang after device removal 2"
In reply to: Trond Myklebust: "Re: Security issues with local filesystem caching"
Next in thread: David Howells: "Re: Security issues with local filesystem caching"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Trond Myklebust <trond.myklebust@xxxxxxxxxx> wrote:

> No. I was thinking of keeping the cache on its own partition

That's a requirement I am specifically avoiding with CacheFiles. I might, for
instance, want to use it on my laptop, and I don't really have enough space to
set aside a partition just for that. The whole point of CacheFiles is that
you don't have to set one aside. If you're going to do that, then CacheFS
should be a better option.

> and using kernel mounts. cachefilesd could possibly mount the thing in its
> own private namespace.

That's still user visible, and SELinux in enforcing mode would still apply.

David
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mariusz Kozlowski: "Re: orinoco driver question"
Previous message: Anton Vorontsov: "[PATCH] fix ide-cs hang after device removal 2"
In reply to: Trond Myklebust: "Re: Security issues with local filesystem caching"
Next in thread: David Howells: "Re: Security issues with local filesystem caching"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]