On Sat, 05 Dec 2009, Andy Lutomirski wrote: > I don't know what that means. Do you mean that if: > > root creates /dev/foo with 0666 perms > eviluser opens /dev/foo with O_NODE More precisely, O_NODE | O_NOACCESS > root chmods /dev/foo to 0000 > root unlinks /dev/foo > > then eviluser can't open /proc/self/fd/whatever for O_RDRW Yes. Maybe alan was worried about the O_NODE | O_RDWR, etc. case? That simply doesn't make any sense for special files. Current patch only allows O_NOACCESS for any file type, but other access modes may make sense for regular files, directories, and maybe even symlinks. Thanks, Miklos -- To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
