Richard Weinberger <richard@xxxxxx> writes: >> I'm still not sure whether this is right direction or not though, >> because mount operation is root only and untrusted image should run fsck >> before. But, also, Oops is clearly unexpected. Hmmm... > > This limitation is not true anymore. Plug in a USB stick into a recent > Linux desktop, it will automatically mount it... Also think of user > namespaces and FUSE. Not really (well, true, some sort though). It is still controlled by root or capability, right? I.e. still controlled by admin of system. I read user namespaces last time, it doesn't allow to mount the block device by namespace's root. FUSE is allowed to mount by true user (I.e. admin can't disallow it)? I still didn't check it fully. -- OGAWA Hirofumi <hirofumi@xxxxxxxxxxxxxxxxxx> -- To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
