From mboxrd@z Thu Jan  1 00:00:00 1970
Date: Thu, 20 Apr 2006 15:16:00 -0600
From: Latchesar Ionkov <lucho@gmx.net>
To: Fans of the OS Plan 9 from Bell Labs <9fans@cse.psu.edu>
Subject: Re: [9fans] Install from CD fails
Message-ID: <20060420211600.GA5690@ionkov.net>
References: <3e1162e60604181222j5901d428udd71067d75336001@mail.gmail.com>
	<656bb955ff0cece1a2b1faa35f5345cf@swtch.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <656bb955ff0cece1a2b1faa35f5345cf@swtch.com>
User-Agent: Mutt/1.4.2.1i
Topicbox-Message-UUID: 4216ba36-ead1-11e9-9d60-3106f5b1d025

Another solution would be to refuse to honor setuid if the
namespace allows a user to mount arbitrary file systems.

	Lucho

On Tue, Apr 18, 2006 at 03:34:53PM -0500, Russ Cox said:
> > A masking bind over /etc/passwd could be disasterous
> > on Unix and I don't think anyone has really solved this problem yet
>
> this is trivial to solve.  setuid binaries should run
> in the default system name space instead of inheriting
> the one in use where they are started.
>
> russ