On Tue, Jul 22, 2025 at 23:16:19 -0400, Stefan Monnier wrote: > all I find are options to control *how* > it's mounted (and to give the right to some users, but `root` always > has the rights, anyway).
That last bit is not always true. There are several types of mounts where some non-UID-0 user has more privileges than UID 0 does. NFS is one example (unless the mount is done with no_root_squash). Another is this: hobbit:~$ ls -ld /run/user/1000/doc dr-x------ 2 greg greg 0 Dec 31 1969 /run/user/1000/doc/ hobbit:~$ sudo ls -ld /run/user/1000/doc ls: cannot access '/run/user/1000/doc': Permission denied hobbit:~$ mount | grep doc portal on /run/user/1000/doc type fuse.portal (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000)
