From owner-freebsd-hackers Tue Aug 24 5:59:33 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from karl.tools.de (karl.TooLs.DE [192.76.135.65]) by hub.freebsd.org (Postfix) with ESMTP id 3011215157 for ; Tue, 24 Aug 1999 05:59:21 -0700 (PDT) (envelope-from ws@tools.de) Received: from kurt.tools.de (kurt.TooLs.DE [192.76.135.70]) by karl.tools.de (8.8.8/8.8.8) with SMTP id OAA07658; Tue, 24 Aug 1999 14:59:10 +0200 (MET DST) Received: by kurt.tools.de (SMI-8.6/SMI-SVR4) id OAA22272; Tue, 24 Aug 1999 14:59:09 +0200 Date: Tue, 24 Aug 1999 14:59:09 +0200 From: ws@tools.de (Wolfgang Solfrank) Message-Id: <199908241259.OAA22272@kurt.tools.de> To: bouyer@antioche.lip6.fr Subject: Re: Need some advice regarding portable user IDs Cc: freebsd-hackers@FreeBSD.ORG, tech-userlevel@netbsd.org, tech-kern@netbsd.org X-Sun-Charset: US-ASCII Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi, > > BTW, since non-root users can mount anything, we should make the filesystems' > > code more robust, so that one cannot take the machine down by inserting > > random media and mounting it. > > They can't mount anything, they need to have access to the block devices. Of course there are some restrictions. What I meant to say was that code of the various filesystems currently assumes that the data on the media is somewhat consistent. Since the intention is that Joe User can mount some arbitrary floppy (or zip disk, or ...), the in kernel filesystem code needs to check any data it reads off the media for plausibility. Ciao, Wolfgang -- ws@TooLs.DE (Wolfgang Solfrank, TooLs GmbH) +49-228-985800 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message