[vox-tech] user loop mount
Henry House
hajhouse at houseag.com
Mon Nov 15 11:03:22 PST 2004
På måndag, 15 november 2004, skrev Peter Jay Salzman:
> Is there a way to let all non-root users loop mount an iso file without
> making mount suid?
Besides configuring an appropriate /etc/fstab, it is also possible to create
a wrapper script in perl or ruby that calls /bin/mount. This is likely as
secure as much the underlying operation can be if you check the users' input
carefully, trust no environment variables, and use taint checking.
--
Henry House
Please don't send me HTML mail! My mail system will reject it.
The unintelligible text that may follow is a digital signature.
See <http://hajhouse.org/pgp> to find out how to use it.
My OpenPGP key: <http://hajhouse.org/hajhouse.asc>.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://ns1.livepenguin.com/pipermail/vox-tech/attachments/20041115/c39487ad/attachment.bin
More information about the vox-tech
mailing list