Unprivileged filesystem mounts, 2018 edition
Unprivileged filesystem mounts, 2018 edition
Posted May 31, 2018 1:50 UTC (Thu) by ncm (guest, #165)In reply to: Unprivileged filesystem mounts, 2018 edition by roc
Parent article: Unprivileged filesystem mounts, 2018 edition
The set Z for which "Zi is a pretty terrible security boundary" does not hold is small enough as to be statistically negligible. The burden of proof is on anyone asserting that some Zj is in that set.
Sshd (with password and challenge-response authentication turned off) might be in the set. Anything not specifically designed to be in Z can safely be assumed not to be.