Am Mittwoch, 13. März 2019, 17:13:52 CET schrieb James Bottomley: > > What do you mean by "containment breaches by other tenants"? Note > > that while the key is added, fscrypt doesn't prevent access to the > > encrypted files. > > You mean it's not multiuser safe? Even if user a owns the key they add > user b can still see the decrypted contents? If user a reads the file before, yes. Then user b sees it because the contents got cached. That's why you need still make sure that your access control is sane. Thanks, //richard
