Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 425804 - sys-apps/util-linux-2.21.2: mount and umount shouldn't be setuid
Summary: sys-apps/util-linux-2.21.2: mount and umount shouldn't be setuid
Status: RESOLVED WONTFIX
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: [OLD] Core system (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo's Team for Core System packages
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2012-07-11 11:57 UTC by wbrana
Modified: 2012-07-15 22:47 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description wbrana 2012-07-11 11:57:01 UTC 
According to http://www.gentoo.org/doc/en/security/security-handbook.xml?part=1&chap=6
mount and umount shouldn't be setuid

"Switch off the SUID bit on ping, mount, umount, chfn, chsh, newgrp, suidperl, pt_chown and traceroute by executing chmod -s on every file."
Comment 1 Göktürk Yüksek archtester gentoo-dev 2012-07-11 13:31:46 UTC 
If setuid is not set for mount, user mount in fstab like this:
    /dev/ram0    /mnt/gentoo    ext4    user    0 0
fails to mount for a regular user.
Comment 2 wbrana 2012-07-11 13:41:44 UTC 
I don't want user mount. There should be USE flag to disable it.
Comment 3 SpanKY gentoo-dev 2012-07-15 22:47:28 UTC 
then add your own post install hooks via /etc/portage to disable the set*id bits