Re: user can't mount loop device...

To: debian-devel@lists.debian.org
Subject: Re: user can't mount loop device...
From: Marcin Owsiany <porridge@pandora.info.bielsko.pl>
Date: Sat, 20 Jan 2001 19:06:48 +0100
Message-id: <[🔎] 20010120190648.A2738@piglet.ds14.agh.edu.pl>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20010120175206.F283@ulysses.dhis.net>; from Marcus.Brinkmann@ruhr-uni-bochum.de on Sat, Jan 20, 2001 at 05:52:06PM +0100
References: <[🔎] Pine.LNX.3.96.1010119163345.8515a-100000@dwarf> <[🔎] 20010119150516.B27259@drow.them.org> <[🔎] 20010120175206.F283@ulysses.dhis.net>

On Sat, Jan 20, 2001 at 05:52:06PM +0100, Marcus Brinkmann wrote:
> On Fri, Jan 19, 2001 at 03:05:16PM -0500, Daniel Jacobowitz wrote:
> > What no one has mentioned is that users absolutely MUST NOT be allowed
> > to run losetup (or mount, which would also be necessary).  It's a file
> > image.  It can, for instance, contain suid binaries, not owned by the
> > user.  That's easy to make - see debugfs.
> 
> The Hurd wins again.

Oh, please, don't make Hurd so mysterious (*grin*), tell us how
it copes with that?

Marcin
-- 
Marcin Owsiany <porridge@pandora.info.bielsko.pl>
http://student.uci.agh.edu.pl/~porridge/
GnuPG: 1024D/60F41216  FE67 DA2D 0ACA FC5E 3F75  D6F6 3A0D 8AA0 60F4 1216

Reply to:

Follow-Ups:
- A Hurd user can mount loop device...
  - From: Neal H Walfield <neal@cs.uml.edu>
- Re: user can't mount loop device...
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>

References:
- user can't mount loop device...
  - From: Dale Scheetz <dwarf@polaris.net>
- Re: user can't mount loop device...
  - From: Daniel Jacobowitz <dan@debian.org>
- Re: user can't mount loop device...
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>

Prev by Date: Re: Bug#82737: building mysql-3.23.30 packages from source fails
Next by Date: A few questions
Previous by thread: Re: user can't mount loop device...
Next by thread: A Hurd user can mount loop device...
Index(es):
- Date
- Thread