Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S262076AbVD0XAH (ORCPT ); Wed, 27 Apr 2005 19:00:07 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S262077AbVD0XAH (ORCPT ); Wed, 27 Apr 2005 19:00:07 -0400 Received: from gprs189-60.eurotel.cz ([160.218.189.60]:33450 "EHLO amd.ucw.cz") by vger.kernel.org with ESMTP id S262076AbVD0W7z (ORCPT ); Wed, 27 Apr 2005 18:59:55 -0400 Date: Wed, 27 Apr 2005 16:58:42 +0200 From: Pavel Machek To: Miklos Szeredi Cc: bulb@ucw.cz, hch@infradead.org, jamie@shareable.org, linuxram@us.ibm.com, 7eggert@gmx.de, viro@parcelfarce.linux.theplanet.co.uk, linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org, akpm@osdl.org Subject: Re: [PATCH] private mounts Message-ID: <20050427145842.GD28119@elf.ucw.cz> References: <20050426131943.GC2226@openzaurus.ucw.cz> <20050426201411.GA20109@elf.ucw.cz> <20050427092450.GB1819@elf.ucw.cz> <20050427115754.GA8981@vagabond> <20050427123944.GA11020@vagabond> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Warning: Reading this can be dangerous to your mental health. User-Agent: Mutt/1.5.6+20040907i Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1580 Lines: 43 Hi! > > The userland tools don't need to know. They just need to not be suid. > > But I'd want to continue distribute the non-crippled kernel module > too, with suid fusermount. Then fusermount _has_ to know which kernel > module is currently active. Add a mount flag and make kernel refuse mount on unknown flags? > > Ok, here I say it is ugly (but not that it's crap). And the reason is, > > that there is a permission system, with some semantics, and then various > > filesystems adapt it in varous ways to fit what they want. So every > > filesystem ends up with it's onw little different behaviour. > > > > That being said, fuse does just about the same as NFS, samba and others > > and I don't really see the reason why it couldn't be integrated. But > > I am not the one to decide. > > Every opinion counts. > > I'm not trying to convince people that the current solution is > perfect. What I'm saying that it's > > a) not harmful > > b) it makes non-privileged mounts possible > > And b) is _the_ most important feature IMO, so the argument for > stripping it out has to be very good. Well, you'll have problems with suid programs suddenly not being able to access files. nfs gets away with it, but nfs is perceived as "broken" anyway... Pavel -- Boycott Kodak -- for their patent abuse against Java. - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/