• Miklos Szeredi's avatar
    [PATCH] FUSE: tighten check for processes allowed access · 87729a55
    Miklos Szeredi authored
    This patch tightens the check for allowing processes to access non-privileged
    mounts.  The rational is that the filesystem implementation can control the
    behavior or get otherwise unavailable information of the filesystem user.  If
    the filesystem user process has the same uid, gid, and is not suid or sgid
    application, then access is safe.  Otherwise access is not allowed unless the
    "allow_other" mount option is given (for which policy is controlled by the
    userspace mount utility).
    
    Thanks to everyone linux-fsdevel, especially Martin Mares who helped uncover
    problems with the previous approach.
    Signed-off-by: default avatarMiklos Szeredi <miklos@szeredi.hu>
    Signed-off-by: default avatarAndrew Morton <akpm@osdl.org>
    Signed-off-by: default avatarLinus Torvalds <torvalds@osdl.org>
    87729a55
dir.c 25.3 KB