Why does it look like all distros are shipping FUSE by default and including a manpage claiming "The fusermount program is installed set-user-gid to fuse. This is done to allow users from fuse group to mount their own filesystem implementations." yet fusermount is suid root...
Conversation
with no fuse group requirement or limitation at all? Who thought this was a good idea?
3
1
Replying to
The upstream project makes that claim in the man page but their build / install process makes a root:root setuid binary with no other options in the configure script. Kernel documentation at Documentation/filesystems/fuse.rst says helper has to be setuid root for non-root users.
Replying to
A 4750 root.fuse /bin/fusermount would make a lot more sense than what is being shipped
1
