Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!pacific.mps.ohio-state.edu!linac!convex!swarren
From: swarren@convex.com (Steve Warren)
Newsgroups: comp.unix.amiga
Subject: Re: interesting feature on AMIX..
Message-ID: <1991Jun20.165331.4604@convex.com>
Date: 20 Jun 91 16:53:31 GMT
References: <13706@mentor.cc.purdue.edu> <1991Jun19.204906.19339@dvorak.amd.com>
Sender: usenet@convex.com (news access account)
Organization: CONVEX Computer Corporation, Richardson, Tx., USA
Lines: 18
Nntp-Posting-Host: neptune.convex.com

In article <1991Jun19.204906.19339@dvorak.amd.com> tim@amd.com (Tim Olson) writes:
>File systems should only be mountable by root.  Allowing a user to
>mount a floppy would be a big security hole.

It doesn't necessarilly have to be a security hole.  There could be a standard
partition at the / level reserved for the floppy filesystem.  If a user wanted
to mount his floppy-based filesystem, it would be treated in a secure way.
Every inode would be scanned to make sure that nothing on the floppy violated
the priviledges of the user.  If anything bogus showed up then the system
would refuse to mount it.  We're only talking about 1.44 Meg, max.  It
shouldn't be that hard to do.  How could any security violations get through
if the system verified the security of the floppy?

--
            _.
--Steve   ._||__
  Warren   v\ *|
             V