artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 769273c) | patch
kern.usermount=1 is unsafe for everyone, since it allows any non-pledged
authorderaadt <deraadt@openbsd.org>
Thu, 14 Jul 2016 15:39:40 +0000 (15:39 +0000)
committerderaadt <deraadt@openbsd.org>
Thu, 14 Jul 2016 15:39:40 +0000 (15:39 +0000)
commitae3255761c2f0fd5f127d9467fdc50fa571ae1c9
tree4c6abb280ea3561bc04289253816f64a7ed75365tree | snapshot
parent769273cb91bc014417cd360611feb803a8b01a52commit | diff
kern.usermount=1 is unsafe for everyone, since it allows any non-pledged
program to call the mount/umount system calls.  There is no way any user
can be expected to keep their system safe / reliable with this feature.
Ignore setting to =1, and after release we'll delete the sysctl entirely.
ok lots of people
sys/kern/kern_sysctl.c diff | blob | history
sys/kern/vfs_syscalls.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim