Re: [patch 8/8] allow unprivileged fuse mounts

From: Andrew Morton
Date: Sat Apr 21 2007 - 03:58:08 EST

Next message: Andrew Morton: "Re: [patch 3/8] account user mounts"
Previous message: Jean Delvare: "Re: [PATCH][RFC] i2c: adds support for i2c bus on 8xx"
In reply to: Miklos Szeredi: "[patch 8/8] allow unprivileged fuse mounts"
Next in thread: Miklos Szeredi: "Re: [patch 8/8] allow unprivileged fuse mounts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 20 Apr 2007 12:25:40 +0200 Miklos Szeredi <miklos@xxxxxxxxxx> wrote:

> Use FS_SAFE for "fuse" fs type, but not for "fuseblk".
>
> FUSE was designed from the beginning to be safe for unprivileged
> users. This has also been verified in practice over many years.

How does FUSE do this?

There are obvious cases like crafting a filesystem which has setuid executables
or world-writeable device nodes or whatever. I'm sure there are lots of other
cases.

Where is FUSE's implementation of all this protection described?
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrew Morton: "Re: [patch 3/8] account user mounts"
Previous message: Jean Delvare: "Re: [PATCH][RFC] i2c: adds support for i2c bus on 8xx"
In reply to: Miklos Szeredi: "[patch 8/8] allow unprivileged fuse mounts"
Next in thread: Miklos Szeredi: "Re: [patch 8/8] allow unprivileged fuse mounts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]