From mboxrd@z Thu Jan 1 00:00:00 1970 From: Steve French Subject: Should a non-root user always be able to mount on a directory they do not own if /etc/fstab entry is marked "user" Date: Thu, 24 Nov 2005 20:11:49 -0600 Message-ID: <438672E5.1080202@austin.rr.com> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Return-path: Received: from ms-smtp-01.texas.rr.com ([24.93.47.40]:23253 "EHLO ms-smtp-01-eri0.texas.rr.com") by vger.kernel.org with ESMTP id S1751151AbVKYCLO (ORCPT ); Thu, 24 Nov 2005 21:11:14 -0500 Received: from [192.168.0.3] (cpe-70-112-171-162.austin.res.rr.com [70.112.171.162]) by ms-smtp-01-eri0.texas.rr.com (8.12.10/8.12.7) with ESMTP id jAP2BCH9000557 for ; Thu, 24 Nov 2005 20:11:12 -0600 (CST) To: linux-fsdevel@vger.kernel.org Sender: linux-fsdevel-owner@vger.kernel.org List-Id: linux-fsdevel.vger.kernel.org Should a non-root user always be able to mount on a directory they do not own if /etc/fstab entry is marked "user"? Are there other restrictions that I should check? In particular, bug https://bugzilla.samba.org/show_bug.cgi?id=1617 asks the cifs vfs allow that a user can mount over a directory owned by root if /etc/fstab says "user" on the matching line. If there are not other security problems, I was planning to follow the suggestion in the bug? I noticed that at least for this version of SuSE smbfs no longer can do setuid mounts, so I could not compare with that, but presumably nfs has no particular security checks in mount beyond what is already there in mount.cifs.c (with the suggested modification)