OpenVZ Forum: Devel » Re: [patch 05/10] add "permit user mounts in new namespace" clone flag

Home » Mailing lists » Devel » Re: [patch 05/10] add "permit user mounts in new namespace" clone flag

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Re: [patch 05/10] add "permit user mounts in new namespace" clone flag [message #18220 is a reply to message #18216]

Fri, 13 April 2007 07:09

Miklos Szeredi
Messages: 161
Registered: April 2007

Senior Member

> question: how is mounting filesystems (loopback,
> fuse, etc) secured in such way that the user
> cannot 'create' device nodes with 'unfortunate'
> permissions?

All unprivileged mounts have "nosuid,nodev" added to their options.

Miklos
_______________________________________________
Containers mailing list
Containers@lists.linux-foundation.org
https://lists.linux-foundation.org/mailman/listinfo/containers

Report message to a moderator

[Message index]

		Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: serue on Thu, 12 April 2007 20:32
		Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: ebiederm on Fri, 13 April 2007 04:45
		Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Fri, 13 April 2007 07:12
		Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Herbert Poetzl on Fri, 13 April 2007 04:16
		Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Fri, 13 April 2007 07:09
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: ebiederm on Mon, 16 April 2007 19:16
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: serue on Mon, 16 April 2007 19:56
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: ebiederm on Tue, 17 April 2007 09:04
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: serue on Tue, 17 April 2007 14:25
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: serue on Tue, 17 April 2007 14:28
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Tue, 17 April 2007 11:09
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: ebiederm on Tue, 17 April 2007 18:16
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Tue, 17 April 2007 18:36
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: ebiederm on Tue, 17 April 2007 19:54
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Wed, 18 April 2007 09:11
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: ebiederm on Wed, 18 April 2007 17:14
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Wed, 18 April 2007 18:05
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Thu, 19 April 2007 09:02
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Trond Myklebust on Wed, 18 April 2007 13:55
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Wed, 18 April 2007 14:03
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Trond Myklebust on Wed, 18 April 2007 14:26
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Christoph Hellwig on Wed, 18 April 2007 15:01
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Miklos Szeredi on Wed, 18 April 2007 15:06
		Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag By: Trond Myklebust on Wed, 18 April 2007 19:00

Previous Topic:	Re: Re: [patch 05/10] add "permit user mounts in new namespace" clone flag
Next Topic:	[PATCH] Set a separate lockdep class for neighbour table's proxy_queue

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Wed Oct 22 11:00:22 GMT 2025

Total time taken to generate the page: 0.12729 seconds