On Mon, Sep 06, 2004 at 10:08:45AM +0200, Frank van Maarseveen wrote: > On Mon, Sep 06, 2004 at 09:56:03AM +0200, Tonnerre wrote: > > > > $ cat fs_header owner_root flags_with_suid evil_program > evil.iso > > $ ls -l evil.iso/evil_program > > It should of course be equivalent to a user mount: nodev nosuid etc.
hmm, sounds reasonable, but what if root accesses it? (or somebody with the 'right' capability) - it might be strange if even root is not able to open device nodes or execute files from an archive - it might lead to interesting situations if the archive is opened by root, but accessed by an user (thinking of caches and such) best, Herbert > -- > Frank > - > To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in > the body of a message to [EMAIL PROTECTED] > More majordomo info at http://vger.kernel.org/majordomo-info.html
