Getting rid of the root account
John F Carr
jfc at athena.mit.edu
Fri Jun 23 01:37:18 AEST 1989
In article <1566 at mcgill-vision.UUCP> mouse at mcgill-vision.UUCP (der Mouse) writes:
[on allowing non-root to run mount]
>Ever hear of "nosuid"?
Before allowing mount access to someone, make sure that all your system
directories are opened by some process (so you can't mount over them).
Otherwise you may find somebody else's /etc mounted over your own (for
example), at which point nosuid is no longer effective (there are a number
of less obvious directories, depending on your system).
--John Carr (jfc at athena.mit.edu)
More information about the Comp.unix.wizards
mailing list