On Fri, Sep 27, 2013 at 10:56 AM, Alessandro Vesely <ves...@tana.it> wrote: > On Thu 26/Sep/2013 19:04:19 +0200 Bastien ROUCARIES wrote: >> >> Not a bug a security feature SEE fuse man page. > > I understand those security concerns. What I'm asking is that just > the mountpoint be accessible to root, not the remote files. That > would be enough for root to learn that the directory contents reside > on a different device. I see no other way to avoid breaking scripts > such as check-setuid (package checksecurity).
Distro people should start thinking about doing per-user namespaces. It would clean up the fuse mount vs. root access mess. Not sure who would be responsible for such decisions. Perhaps as a first step, PAM maintainer could be asked? Thanks, Miklos -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
