From mboxrd@z Thu Jan 1 00:00:00 1970 From: Trond Myklebust Subject: Re: [PATCH] private mounts Date: Thu, 28 Apr 2005 07:35:17 -0400 Message-ID: <1114688117.10083.7.camel@lade.trondhjem.org> References: <20050426201411.GA20109@elf.ucw.cz> <20050427092450.GB1819@elf.ucw.cz> <20050427115754.GA8981@vagabond> <20050427123944.GA11020@vagabond> <20050427145842.GD28119@elf.ucw.cz> <1114644116.9947.14.camel@lade.trondhjem.org> <20050428082444.GK1906@elf.ucw.cz> Mime-Version: 1.0 Content-Type: text/plain Content-Transfer-Encoding: 7bit Cc: Miklos Szeredi , bulb@ucw.cz, hch@infradead.org, jamie@shareable.org, linuxram@us.ibm.com, 7eggert@gmx.de, Alexander Viro , Linux Filesystem Development , linux-kernel@vger.kernel.org, Andrew Morton Return-path: Received: from pat.uio.no ([129.240.130.16]:39389 "EHLO pat.uio.no") by vger.kernel.org with ESMTP id S262068AbVD1Lfs (ORCPT ); Thu, 28 Apr 2005 07:35:48 -0400 To: Pavel Machek In-Reply-To: <20050428082444.GK1906@elf.ucw.cz> Sender: linux-fsdevel-owner@vger.kernel.org List-Id: linux-fsdevel.vger.kernel.org to den 28.04.2005 Klokka 10:24 (+0200) skreiv Pavel Machek: > Well, administrator on CLIENT can impersonate whoever he wants, and if > data happens to be cached, he can just read them from local memory. So > whatever SERVER administrator does, CLIENT administrator can work > around. This is why you have identity squashing and/or strong security: to stop the CLIENT administrator impersonating whoever he wants and working around your security measures. Yes there's all the FUD about how the administrator can still take over your RPCSEC_GSS creds and/or read cached data once you have logged in. If you log into a compromised client then you're screwed. What's new? Trond -- Trond Myklebust