From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.1 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,FREEMAIL_FROM autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 3086 invoked from network); 22 Jan 2021 10:10:45 -0000 Received: from 1ess.inri.net (216.126.196.35) by inbox.vuxu.org with ESMTPUTF8; 22 Jan 2021 10:10:45 -0000 Received: from mail-ej1-f54.google.com ([209.85.218.54]) by 1ess; Fri Jan 22 04:41:58 -0500 2021 Received: by mail-ej1-f54.google.com with SMTP id hs11so6765225ejc.1 for <9front@9front.org>; Fri, 22 Jan 2021 01:41:49 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=gh7YvtQwbhELm7ZdBH6RrwgHP7KjxSanwQsB+OPNPzo=; b=FIv0+o2OP7t0J6SYTEV1aUzJ8yUyNeerG5E/0o41kfyla2zFbkc/AFIrlSTbhf563Z 3Anr9+++z9PUePThFU8Di8JWJ3G7BZXQJzZJjQQBCETjNR85l6PmGE/hqhM0yr81HA6C oeYYBoG90uJ9VhOWRgy8ki33uLg3MgoyrmvaD8TM2BawxtO4GdsHLPiT+G5m7EHt7xG6 fMqtRvx8adkH+CiI7kh2U4tJOaeO6MIMiZF4MPQp3HPwrJSLS8/4NcYpH32R8BjxeRTc fCl+5B8dZKo6+GWckTjbB/bYQoIXAV4ynXnZzai/qT3g3y1ZE3HtfMl0hnFWD9XfU+Jp AvMw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=gh7YvtQwbhELm7ZdBH6RrwgHP7KjxSanwQsB+OPNPzo=; b=cDgOAtJ55gnucFhaSZgqsxQ/MKVbfffOWOTik5GcHq91VrVpTMBKa36kI/YzuUAhlr /mEQGxOHFVYsJUmAEANJ/U3xAfsSmaiPwCnktK0j/SVxdZKvLCj7t/iIWDYr8bOHGMZ1 N5zEvrPTuezapxnow6RQSQG9DgFffvBrYlyRzS1BQ0gEa2S/SOL50MZ1A/v6RmenNWIl 0SEM0AS98z8tdeg6S6ncCWftVV7dcl3hM1CyPlVG3j3J5dEZ9joJopToaebYguQUGwl1 5ri5e1pFHIgjcPxfftKYDe6rky2cRfxb7aH4ZovdTwaMQG8pynfocvQ04c2mKe0WdG6H d15A== X-Gm-Message-State: AOAM530pSJYNrjZGeNagxW/jSFIzkin4+t2+JAQQrvNAGOd+fLRFa5jo CMmEgfss8QEzrh3Jy3p6cBNxm/GMW+nri11OenIO2kVF/5I= X-Google-Smtp-Source: ABdhPJw93/j1mBoSxz0ilLeIa+k8IcggVpR9o06Uq9VFwTCz5p+yX4ToLFuoJz33DaSpP4Gt2GmmRI9sq1GN34epxa0= X-Received: by 2002:a17:906:b6c1:: with SMTP id ec1mr259606ejb.305.1611308509185; Fri, 22 Jan 2021 01:41:49 -0800 (PST) MIME-Version: 1.0 Received: by 2002:a17:906:3f91:0:0:0:0 with HTTP; Fri, 22 Jan 2021 01:41:48 -0800 (PST) In-Reply-To: References: <154A2B81E5307985989F46BE958ACBAC@eigenstate.org> <84C199F8-15A4-4434-AD56-A35AB5CC6F4A@stanleylieber.com> From: hiro <23hiro@gmail.com> Date: Fri, 22 Jan 2021 10:41:48 +0100 Message-ID: To: 9front@9front.org Content-Type: text/plain; charset="UTF-8" List-ID: <9front.9front.org> List-Help: X-Glyph: ➈ X-Bullshit: just-in-time lifecycle-aware lifecycle engine Subject: Re: [9front] user none: cwfs vs hjfs Reply-To: 9front@9front.org Precedence: bulk > upas becomes user none to process files through /mail/queue no > matter who upas starts out running as. sounds like a bug > that has no current solution except "run everything that requires file > privacy on separate file systems." later on you say file permissions are granular enough. so i don't know why you say here that "file privacy" would be a problem. > but cannot be masked > from the special # file system. oh? i was not aware. do you have a trivial example for this, i'm curious! > solution at all. any regular user must be trusted with proc, binding, > unbinding, this is why user none exists in the first place. > the disconnect here is between file and process permissions. they are > completely different things. we have fine grained file permissions but auth > is all or nothing. so is there a problem with /proc ? can we read other user's memory or something? or what did you find?