Summary: | patches for mount: ignore managed/kudzu options | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | foser (RETIRED) <foser> |
Component: | [OLD] Unspecified | Assignee: | Gentoo's Team for Core System packages <base-system> |
Status: | RESOLVED FIXED | ||
Severity: | enhancement | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | All | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: |
mount managed noop keyword patch
add pamconsole option to mount |
Description
foser (RETIRED)
2004-11-11 15:06:16 UTC
Created attachment 43744 [details, diff]
mount managed noop keyword patch
this adds the 'managed' keyword.. because it's a RH patch it also adds 'kudzu'
as noop. We could probably remove that.
Created attachment 43745 [details, diff]
add pamconsole option to mount
i dont see how (2) is really useful ... someone could simply compile their own version of mount and get around the pam requirement You don't even have to compile your own version of mount to get around it, thats not really the point. It's just a basic measure to have a somewhat safer default policy. util-linux-2.12i now includes the mount ignore managed patch, thanks there's 2 patches here.. going by comments #3 and #4 here, the second patch wont be added since it has no real merit it has a real merit, just because it's not secure to a paranoia degree it doesn't mean it has no use at all, it is safer than the default. The patch is hardly intrusive, so i see no reason not to add it. so feel free to add it to a local ebuild on your machine, it's not going into portage |