Subject: Re: lpd and filter programs
To: None <tech-userlevel@NetBSD.ORG>
From: Wolfgang Solfrank <>
List: tech-userlevel
Date: 07/30/1998 15:33:10

> Not if mounts done by non-root are forcibly either (a) done nosuid (and
> nodev) or (b) done such that all ownerships on the mounted filesystem
> are overridden to the IDs of the user who did the mount (they'd still
> have to have nodev forced).  And neither one is "a major redesign";
> indeed, (a) could be done with existing machinery.

This should be "can".

It is possible since nearly 4 years in NetBSD, i.e. NetBSD 1.1!  It's also
in Lite2.

The restrictions for Joe Luser to mount are:

1. the mount is silently forced to nosuid and nodev
2. the user must own the directory the mount is done to.

Additional restrictions apply depending on the type of filesystem to be
mounted.  E.g. mounts of devices require that

3. the user must have read or read/write permission for read-only and ordinary
   mounts resp.

ws@TooLs.DE     (Wolfgang Solfrank, TooLs GmbH) 	+49-228-985800