> I've pondered ways of going about this. The problem is, the
> uid-to-home-directory is purely a userspace construct. Consider this
> possibility then:
>
> /tmp (symlink) -> /proc/uidtmp
> /proc/uidtmp is an on-the-fly symlink (like /proc/self)
> to -> /realtmp/<euid> (or whichever UID field is apropos)
> (Where "realtmp" some directory name settable with a proc entry or
> sysctl). And the /realtmp/<uid> files can actually be whatever you
> like, e.g. individual symlinks to "/home/username/tmp/"
>
> This could be done with minimal code, default to "off", and be a
> useful, easy-to-tune mechanism for people who are more A.R. about
> their security. It would also keep policy _out_ of the kernel.
I like your idea. Any chance Linus would accept a patch? If no one else
is interested in writing this, I might code it myself over Christmas...
--Scott
@ @
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-oOO-(_)-OOo-=-=-=-=-=
C. Scott Ananian: cananian@lcs.mit.edu / Declare the Truth boldly and
Laboratory for Computer Science/Crypto / without hindrance.
Massachusetts Institute of Technology /META-PARRESIAS AKOLUTOS:Acts 28:31
-.-. .-.. .. ..-. ..-. --- .-. -.. ... -.-. --- - - .- -. .- -. .. .- -.
PGP key available via finger and from http://www.pdos.lcs.mit.edu/~cananian