I've pondered ways of going about this. The problem is, the
uid-to-home-directory is purely a userspace construct. Consider this
possibility then:
/tmp (symlink) -> /proc/uidtmp
/proc/uidtmp is an on-the-fly symlink (like /proc/self)
to -> /realtmp/<euid> (or whichever UID field is apropos)
(Where "realtmp" some directory name settable with a proc entry or
sysctl). And the /realtmp/<uid> files can actually be whatever you
like, e.g. individual symlinks to "/home/username/tmp/"
This could be done with minimal code, default to "off", and be a
useful, easy-to-tune mechanism for people who are more A.R. about
their security. It would also keep policy _out_ of the kernel.
Just an idea.
Adam
-- Things look so bad everywhere Adam D. Bradley artdodge@cs.bu.edu In this whole world what is fair Boston University Computer Science We walk blind and we try to see Ph.D. student and Linux hacker Falling behind in what could be ----> Bring me a Higher Love ----> <><